Operation Manual – AAA & RADIUS & HWTACACS & EAD
Quidway S3900 Series Ethernet Switches-Release 1510
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
Huawei Technologies Proprietary
1-22
Caution:
z The character string of user-name cannot contain “/”, “:”, “*”, “?”, “<” and “>”.
Moreover, “@” can be used no more than once.
z After the local-user password-display-mode cipher-force command is executed,
all passwords will be displayed in cipher mode even through you specify to display
user passwords in plain text by using the password command.
z If the configured authentication method (local or RADIUS) requires a user name and
a password, the command level that a user can access after login is determined by
the priority level of the user. For SSH users, when they use RSA shared keys for
authentication, the commands they can access are determined by the levels set on
their user interfaces.
z If the configured authentication method is none or requires a password, the
command level that a user can access after login is determined by the level of the
user interface.
1.3.7 Cutting Down User Connections Forcibly
Table 1-11 Cut down user connection forcibly
Operation Command Description
Enter system view
system-view
—
Cut down user
connections forcibly
cut connection { all |
access-type { dot1x |
mac-authentication } | domain
isp-name | interface
interface-type interface-number |
ip ip-address | mac mac-address |
radius-scheme
radius-scheme-name | vlan
vlan-id | ucibindex ucib-index |
user-name user-name }
Required
Note:
Telnet and FTP users can use the display connection command to view the
connection, but they cannot use the cut connection command to cut down the
connection.
To Next Page
Loading...
Need help?
General