Command Manual – Security
Quidway S8500 Series Routing Switches
Chapter 2 AAA and RADIUS/HWTACACS Protocol
Configuration Commands
Huawei Technologies Proprietary
2-57
Example
# Configure a primary accounting server.
[Quidway] hwtacacs scheme test1
[Quidway-hwtacacs-test1] primary accounting 10.163.155.12 49
2.3.10 primary authentication
Syntax
primary authentication ip-address [ port-number]
undo primary authentication
View
HWTACACS view
Parameter
ip-address: IP address of the server, a valid unicast address in dotted decimal format.
port-number: Port number of the server, which is in the range 1 to 65535 and defaults to
49.
Description
Use the primary authentication command to configure a primary TACACS
authentication server.
Use the undo primary authentication command to delete the configured
authentication server.
By default, the IP address of the TACACS authentication server is all zeros.
You are not allowed to assign the same IP address to both primary and secondary
authentication servers.
If you repeatedly use this command, the latest configuration overwrites the previous
one.
You can remove a TACACS scheme authentication server only when no Active TCP
connection used to send authentication packets uses the server., and the removal
impacts only packets forwarded afterwards.
Related command: display hwtacacs.
Example
# Configure a primary authentication server.
[Quidway] hwtacacs scheme test1
[Quidway-hwtacacs-test1] primary authentication 10.163.155.13 49
To Next Page
Loading...
