194
Configuring AAA
Configuration prerequisites
• To deploy local authentication, configure local users on the access device as described in "User
configuration."
• To deploy remote RADIUS authentication, authorization, or accounting, create the RADIUS schemes
to be referenced as described in "RADIUS configuration."
• To deploy remote HWTACACS authentication, authorization, or accounting, create the
HWTACACS schemes to be referenced as described in "HWTACACS configuration."
Recommended configuration procedure
Ste
Remarks
1. Configuring an ISP domain
Optional.
Create ISP domains and specify one of them as the default ISP domain.
By default, there is an ISP domain named system, which is the default ISP
domain.
2. Configuring authentication
methods for the domain
Optional.
Configure authentication methods for various types of users.
By default, all types of users use local authentication.
3. Configuring authorization
methods for the domain
Optional.
Specify the authorization methods for various types of users.
By default, all types of users use local authorization.
4. Configuring accounting
methods for the domain
Required.
Specify the accounting methods for various types of users.
By default, all types of users use local accounting.
NOTE:
AA user types include LAN users (such as 802.1X authentication users and MAC authentication users)
and login users (such as SSH, Telnet, FTP, and terminal users).
Configuring an ISP domain
1. Select Authentication > AAA from the navigation tree.
The Domain Setup page appears.
To Next Page
Loading...
Need help?
General
