To Next Page

To Previous Page

Ste

Command

Remarks

5. Enable command

authorization.

command

authorization

Optional.

• By default, command authorization is not enabled.

• By default, the command level depends on the user

privilege level. A user is authorized a command level

not higher than the user privilege level. With command

authorization enabled, the command level for a login

user is determined by both the user privilege level and

AAA authorization. If a user executes a command of

the corresponding command level, the authorization

server checks whether the command is authorized. If it

is, the command can be executed.

• Before enabling command authorization, configure the

AAA authorization server. After you enable command

authorization, only commands authorized by the AAA

authorization server can be executed.

6. Enable command

accounting.

command

accounting

Optional.

• By default, command accounting is disabled. The

accounting server does not record the commands

executed by users.

• Command accounting allows the HWTACACS server

to record all executed commands that are supported

by the device, regardless of the command execution

result. This helps control and monitor user operations

on the device. If command accounting is enabled and

command authorization is not enabled, every executed

command is recorded on the HWTACACS server. If

both command accounting and command

authorization are enabled, only the authorized and

executed commands are recorded on the HWTACACS

server.

• Configure the AAA accounting server before enabling

command accounting.

7. Exit to system view. quit —

8. Configur

authentic

ation

mode.

Enter

default

ISP

domain

view.

domain

domain-name

Optional.

By default, the AAA scheme is local.

If you specify the local AAA scheme, perform the

configuration concerning local user as well. If you specify

an existing scheme by providing the radius-scheme-name

argument, perform the following configuration as well:

• For RADIUS and HWTACACS configuration, see

Security Configuration Guide.

• Configure the username and password on the AAA

server. (For more information, see Security

Configuration Guide.)

Specify

AAA

scheme

to be

applied

to the

domain.

authentication

default { hwtacacs-

scheme hwtacacs-

scheme-name

[ local ] | local |

none | radius-

scheme radius-

scheme-name

[ local ] }

Exit to

system

view.

quit

Brand	HP
Model	A5800 Series
Category	Switch
Language	English

HP A5800 Series User Manual

Table of Contents

Other manuals for HP A5800 Series

Questions and Answers:

HP A5800 Series Specifications

Related product manuals