Aaa Configuration Considerations And Task List - HP FlexFabric 5930 Series Security Configuration Manual

Hide thumbs Also See for FlexFabric 5930 Series:

Configuration manuals (467 pages)

Command reference manual (87 pages)

Installation manual (73 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

Table of Contents

No.

Sub-attribute

Result_Code

Connect_ID

Ftp_Directory

Exec_Privilege

NAS_Startup_Timestamp

Ip_Host_Addr

User_Notify

User_HeartBeat

140

User_Group

141

Security_Level

201

Input-Interval-Octets

202

Output-Interval-Octets

203

Input-Interval-Packets

204

Output-Interval-Packets

205

Input-Interval-Gigawords

206

Output-Interval-Gigawords

207

Backup-NAS-IP

255

Product_ID

AAA configuration considerations and task list

To configure AAA, complete these tasks on the NAS:

Configure the required AAA schemes.

Local authentication—Configure local users and the related attributes, including the usernames

and passwords, for the users to be authenticated.

Remote authentication—Configure the required RADIUS and HWTACACS schemes.

Description

Result of the Trigger-Request or SetPolicy operation, zero for success and

any other value for failure.

Index of the user connection.

FTP user working directory. When the RADIUS client acts as the FTP

server, this attribute is used to set the FTP directory for an FTP user on the

RADIUS client.

EXEC user priority.

Startup time of the NAS in seconds, which is represented by the time

elapsed after 00:00:00 on Jan. 1, 1970 (UTC).

User IP address and MAC address included in authentication and

accounting requests, in the format A.B.C.D hh:hh:hh:hh:hh:hh. A space

is required between the IP address and the MAC address.

Information that must be sent from the server to the client transparently.

Hash value assigned after an 802.1X user passes authentication, which

is a 32-byte string. This attribute is stored in the user list on the NAS and

verifies the handshake packets from the 802.1X user. This attribute only

exists in Access-Accept and Accounting-Request packets.

User groups assigned after the SSL VPN user passes authentication. A

user can belong to multiple user groups that are separated by

semi-colons. This attribute is used to work with the SSL VPN device.

Security level assigned after the SSL VPN user passes security

authentication.

Number of bytes input within a real-time accounting interval.

Number of bytes output within a real-time accounting interval.

Number of packets input within an accounting interval in the unit set on

the NAS.

Number of packets output within an accounting interval in the unit set on

the NAS.

Amount of bytes input within an accounting interval, in units of 4G bytes.

Amount of bytes output within an accounting interval, in units of 4G

bytes.

Backup source IP address for sending RADIUS packets.

Product name.

Table of Contents

Aaa Configuration Considerations And Task List - HP FlexFabric 5930 Series Security Configuration Manual

AAA configuration considerations and task list

Troubleshooting

Related Manuals for HP FlexFabric 5930 Series

Related Content for HP FlexFabric 5930 Series

Table of Contents