EasyManuals Logo
Home>HP>Switch>3600 v2 Series

HP 3600 v2 Series Configuration Guide

HP 3600 v2 Series
449 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #48 background imageLoading...
Page #48 background image
35
Creating an HWTACACS scheme
The HWTACACS protocol is configured on a per scheme basis. Before performing other HWTACACS
configurations, follow these steps to create an HWTACACS scheme and enter HWTACACS scheme
view:
Step Command Remarks
1. Enter system view. system-view N/A
2. Create an HWTACACS scheme
and enter HWTACACS scheme
view.
hwtacacs scheme
hwtacacs-scheme-name
Not defined by default.
NOTE:
• Up to 16 HWTACACS schemes can be configured.
• A scheme can be deleted only when it is not referenced.
Specifying the HWTACACS authentication servers
You can specify one primary authentication server and up to 16 secondary authentication servers for an
HWTACACS scheme. When the primary server is not available, the switch searches for the secondary
servers in the order they are configured. The first secondary server in active state is used for
communication.
If redundancy is not required, specify only the primary server.
Follow these guidelines when you specify HWTACACS authentication servers:
• An HWTACACS server can function as the primary authentication server of one scheme and as a
secondary authentication server of another scheme at the same time.
• The IP addresses of the primary and secondary authentication servers cannot be the same.
Otherwise, the configuration fails.
• You can remove an authentication server only when no active TCP connection for sending
authentication packets is using it.
To specify HWTACACS authentication servers for an HWTACACS scheme:
Step Command Remarks
1. Enter system view. system-view N/A
2. Enter HWTACACS
scheme view.
hwtacacs scheme hwtacacs-scheme-name
N/A
3. Specify HWTACACS
authentication servers.
• Specify the primary HWTACACS
authentication server:
primary authentication ip-address
[ port-number | key [ cipher | simple ]
key | vpn-instance
vpn-instance-name ] *
• Specify a secondary HWTACACS
authentication server:
secondary authentication ip-address
[ port-number | key [ cipher | simple ]
key | vpn-instance
vpn-instance-name ] *
Configure at least one
command.
No authentication server is
specified by default.

Table of Contents

Other manuals for HP 3600 v2 Series

Preview: Command Reference
Command Reference479 pages
Preview: Installation Guide
Installation Guide62 pages
Preview: Security Configuration Guide
Security Configuration Guide398 pages
Preview: Compliance And Safety Manual
Compliance And Safety Manual51 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HP 3600 v2 Series and is the answer not in the manual?

HP 3600 v2 Series Specifications

General IconGeneral
BrandHP
Model3600 v2 Series
CategorySwitch
LanguageEnglish

Related product manuals