29
Ste
Command
Remarks
3. Enable scheme
authentication.
authentication-mode scheme
In non-FIPS mode, you can log in to
the device through the console port
without authentication by default.
In FIPS mode, scheme authentication
is enabled by default.
If local authentication is used and the
password control function is
enabled, change the password at
the first login. If NTP is being used
for system time synchronization, HP
recommends that you wait 10
minutes before changing the
password, so the configuration time
of the new password is based on the
synchronized system time.
4. Enable command
authorization.
command authorization
Optional.
By default, command authorization
is disabled. The commands
available for a user only depend on
the user privilege level.
If command authorization is
enabled, a command is available
only if the user has the
commensurate user privilege level
and is authorized to use the
command by the AAA scheme.
5. Enable command
accounting.
command accounting
Optional.
By default, command accounting is
disabled. The accounting server
does not record the commands
executed by users.
Command accounting allows the
HWTACACS server to record all
commands executed by users,
regardless of command execution
results. This function helps control
and monitor user behaviors on the
device. If command accounting is
enabled and command
authorization is not enabled, every
executed command is recorded on
the HWTACACS server. If both
command accounting and
command authorization are
enabled, only the authorized and
executed commands are recorded
on the HWTACACS server.
6. Exit to system view.
quit N/A
To Next Page
Loading...
Need help?
General
