EasyManuals Logo
Home>HPE>Network Router>FlexNetwork MSR Series

HPE FlexNetwork MSR Series Comware 5 Security Configuration Guide

HPE FlexNetwork MSR Series
547 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Page #77 background imageLoading...
Page #77 background image
64
• Use local authentication for the Telnet user and assign the privilege level of 0 to the user when
the user passes authentication.
• Use the RADIUS server for level switching authentication of the Telnet user. If the RADIUS
server is not available, use local authentication.
Figure 20 Network diagram
Configuration considerations
1. Configure the router to use AAA, particularly, local authentication for Telnet users:
{ Create ISP domain bbb and configure it to use local authentication for Telnet users.
{ Create a local user account, configure the password, and assign the privilege level for the
user to enjoy after login.
2. On the router, configure the authentication method for user privilege level switching:
{ Specify the router to use RADIUS authentication and, if RADIUS authentication is not
available, use local authentication for users switching from a lower level to a higher level.
{ Configure RADIUS scheme rad and assign an IP address to the RADIUS server. Set the
shared keys for secure RADIUS communication and specify that usernames sent to the
RADIUS server carry no domain name. Configure the domain to use RADIUS scheme rad
for user privilege level switching authentication.
{ Configure the password for local user privilege level switching authentication.
3. On the RADIUS server, add the username and password for user privilege level switching
authentication.
Configuration procedure
1. Configure the router:
# Configure the IP address of Ethernet 1/1, through which the Telnet user accesses the router.
<Router> system-view
[Router] interface ethernet 1/1
[Router-Ethernet1/1] ip address 192.168.1.70 255.255.255.0
[Router-Ethernet1/1] quit
# Configure the IP address of Ethernet 1/2, through which the router communicates with the
server.
[Router] interface ethernet 1/2
[Router-Ethernet1/2] ip address 10.1.1.2 255.255.255.0
[Router-Ethernet1/2] quit
# Enable the router to provide Telnet service.
[Router] telnet server enable
# Configure the router to use AAA for Telnet users.
[Router] user-interface vty 0 4

Table of Contents

Other manuals for HPE FlexNetwork MSR Series

Preview: Configuration Guide
Configuration Guide861 pages
Preview: Comware 7 Layer 3 - Ip Services Configuration Guides
Comware 7 Layer 3 - Ip Services Configuration Guides554 pages
Preview: Guide
Guide213 pages
Preview: Command Reference
Command Reference120 pages
Preview: Comware 5 Layer 2 - Wan Access Configuration Guide
Comware 5 Layer 2 - Wan Access Configuration Guide420 pages

Questions and Answers:

Question and Answer IconNeed help?

Do you have a question about the HPE FlexNetwork MSR Series and is the answer not in the manual?

HPE FlexNetwork MSR Series Specifications

General IconGeneral
BrandHPE
ModelFlexNetwork MSR Series
CategoryNetwork Router
LanguageEnglish

Related product manuals