49
Configuration procedure
To configure authorization methods for an ISP domain:
Step Command Remarks
1. Enter system view.
system-view
N/A
2. Enter ISP domain view.
domain
isp-name
N/A
3. Specify the default
authorization method for
all types of users.
• In non-FIPS mode:
authorization default
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | none | radius-scheme
radius-scheme-name [ local ] }
• In FIPS mode:
authorization default
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | radius-scheme
radius-scheme-name [ local ] }
Optional.
The default authorization
method is
local
for all types
of users.
4. Specify the command
authorization method.
• In non-FIPS mode:
authorization command
{ hwtacacs-scheme
hwtacacs-scheme-name [ local |
none ] | local | none }
• In FIPS mode:
authorization command
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local }
Optional.
The default authorization
method is used by default.
5. Specify the authorization
method for DVPN users.
• In non-FIPS mode:
authorization dvpn { local | none |
radius-scheme
radius-scheme-name [ local ] }
• In FIPS mode:
authorization dvpn { local |
radius-scheme
radius-scheme-name [ local ] }
Optional.
The default authorization
method is used by default.
6. Specify the authorization
method for LAN users.
• In non-FIPS mode:
authorization lan-access { local |
none | radius-scheme
radius-scheme-name [ local |
none ] }
• In FIPS mode:
authorization lan-access { local |
radius-scheme
radius-scheme-name [ local ] }
Optional.
The default authorization
method is used by default.
7. Specify the authorization
method for login users.
• In non-FIPS mode:
authorization login
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | none | radius-scheme
radius-scheme-name [ local ] }
• In FIPS mode:
authorization login
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | radius-scheme
radius-scheme-name [ local ] }
Optional.
The default authorization
method is used by default.
To Next Page
Loading...
Need help?
General
