EasyManuals Logo

H3C S5120-EI Series User Manual

H3C S5120-EI Series
1166 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #598 background imageLoading...
Page #598 background image
1-10
12) The HWTACACS client sends the user authorization request packet to the HWTACACS server.
13) The HWTACACS server sends back the authorization response, indicating that the user is
authorized now.
14) Knowing that the user is now authorized, the HWTACACS client pushes the configuration interface
of the NAS to the user.
15) The HWTACACS client sends a start-accounting request to the HWTACACS server.
16) The HWTACACS server sends back an accounting response, indicating that it has received the
start-accounting request.
17) The user logs off.
18) The HWTACACS client sends a stop-accounting request to the HWTACACS server.
19) The HWTACACS server sends back a stop-accounting response, indicating that the
stop-accounting request has been received.
Protocols and Standards
The protocols and standards related to AAA, RADIUS, HWTACACS include:
z RFC 2865: Remote Authentication Dial In User Service (RADIUS)
z RFC 2866: RADIUS Accounting
z RFC 2867: RADIUS Accounting Modifications for Tunnel Protocol Support
z RFC 2868: RADIUS Attributes for Tunnel Protocol Support
z RFC 2869: RADIUS Extensions
z RFC 1492: An Access Control Protocol, Sometimes Called TACACS
AAA Configuration Task List
The basic procedure to configure AAA is as follows:
1) Configure the required AAA schemes.
z Local authentication: Configure local users and related attributes, including usernames and
passwords of the users to be authenticated.
z Remote authentication: Configure the required RADIUS and/or HWTACACS schemes, and
configure user attributes on the servers accordingly.
2) Configure the AAA methods: Reference the configured AAA schemes in the users’ ISP domains.
z Authentication method: No authentication (none), local authentication (local), or remote
authentication (scheme)
z Authorization method: No authorization (none) , local authorization (local), or remote authorization
(scheme)
z Accounting method: No accounting (none), local accounting (local), or remote accounting
(scheme)
For login users, it is necessary to configure the authentication mode for logging into the user interface
as scheme. For detailed information, refer to Login Configuration of the System Volume.

Table of Contents

Other manuals for H3C S5120-EI Series

Preview: Installation Manual
Installation Manual96 pages
Preview: Command Reference
Command Reference242 pages
Preview: Installation Guide
Installation Guide63 pages
Preview: Configuration Guide
Configuration Guide144 pages
Preview: Configuration Commands
Configuration Commands29 pages
Preview: Irf Command Reference
Irf Command Reference32 pages
Preview: Installation, Quick Start
Installation, Quick Start31 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the H3C S5120-EI Series and is the answer not in the manual?

H3C S5120-EI Series Specifications

General IconGeneral
BrandH3C
ModelS5120-EI Series
CategorySwitch
LanguageEnglish

Related product manuals