Operation Manual – AAA & RADIUS & HWTACACS & EAD
Quidway S5600 Series Ethernet Switches-Release 1510
Chapter 1 AAA & RADIUS & HWTACACS
Configuration
Huawei Technologies Proprietary
1-38
Operation Command Description
Set a shared key
for the
HWTACACS
accounting/authen
tication/authorizati
on packets
key { accounting |
authorization |
authentication } string
Required
By default, the TACACS server
does not have a key.
1.5.6 Configuring the Attributes for Data to be Sent to TACACS Servers
Table 1-29 Configure the attributes for data to be sent to TACACS servers
Operation Command Description
Enter system
view
system-view
—
Create a
HWTACACS
scheme and
enter its view
hwtacacs scheme
hwtacacs-scheme-name
Required
By default, no HWTACACS
scheme exists.
Set the format
of the user
names to be
sent to
TACACS
servers
user-name-format
{ with-domain |
without-domain }
Optional
By default, the user names
sent from the switch to
TACACS servers carry ISP
domain names.
data-flow-format data { byte |
giga-byte | kilo-byte |
ega-byte }
m
Set the units of
measure for
data flows sent
to TACACS
servers
data-flow-format packet
{ giga-packet | kilo-packet |
mega-packet | one-packet }
Optional
By default, in a TACACS
scheme, the unit of measure
for data is byte and that for
packets is one-packet.
HWTACACS view
nas-ip ip-address
Set the source
IP address
used by the
switch to send
HWTACACS
packets
System view
hwtacacs nas-ip ip-address
Optional
By default, no source IP
address is specified; the IP
address of the outbound
interface is used as the source
IP address.
To Next Page
Loading...
