Displaying And Maintaining Aaa; Aaa For Ssh Users By An Hwtacacs Server; Network Requirements - HP 5920 Series Configuration Manual

Step
3. Specify the default
accounting method for all
types of users.
4. Specify the command
accounting method.
5. Specify the accounting
method for LAN users.
6. Specify the accounting
method for login users.

Displaying and maintaining AAA

Execute the display command in any view.
Task
Display the configuration of ISP domains.

AAA for SSH users by an HWTACACS server

Network requirements

As shown in
authorization, and accounting, and to assign the default user role network-operator to SSH users after
they pass authentication.
Set the shared keys for secure HWTACACS communication to expert. Configure the switch to send
usernames without domain names to the HWTACACS server.
Command
accounting default { hwtacacs-scheme
hwtacacs-scheme-name [ radius-scheme
radius-scheme-name ] [ local ] [ none ] |
local [ none ] | none | radius-scheme
radius-scheme-name [ hwtacacs-scheme
hwtacacs-scheme-name ] [ local ] [ none ] }
accounting command hwtacacs-scheme
hwtacacs-scheme-name
accounting lan-access { local [ none ] |
none | radius-scheme radius-scheme-name
[ local ] [ none ] }
accounting login { hwtacacs-scheme
hwtacacs-scheme-name [ radius-scheme
radius-scheme-name ] [ local ] [ none ] |
local [ none ] | none | radius-scheme
radius-scheme-name [ hwtacacs-scheme
hwtacacs-scheme-name ] [ local ] [ none ] }
Figure 1 1, configure the switch to use the HWTACACS server for SSH user authentication,
Command
display domain [ isp-name ]
43
Remarks
By default, the accounting
method is local.
By default, the default
accounting method is used
for command accounting.
By default, the default
accounting method is used
for LAN users.
By default, the default
accounting method is used
for login users.