Hwtacacs Scheme - HP FlexFabric 7900 Series Command Reference Manual
Security
Hide thumbs
Also See for FlexFabric 7900 Series:
- Command reference manual (294 pages) ,
- Configuration manual (165 pages) ,
- Installation manual (58 pages)
Table of Contents
Advertisement
Default
The source IP address of a packet sent to the server is the IP address of the outbound interface.
Views
System view
Predefined user roles
network-admin
Parameters
ipv4-address: Specifies an IPv4 address, which must be an address of the device and cannot be 0.0.0.0,
255.255.255.255, a class D address, a class E address, or a loopback address.
Usage guidelines
The source IP address of HWTACACS packets that a NAS sends must match the IP address of the NAS
that is configured on the HWTACACS server. An HWTACACS server identifies a NAS by IP address.
Upon receiving an HWTACACS packet, an HWTACACS server checks whether the source IP address of
the packet is the IP address of a managed NAS. If it is, the server processes the packet. If it is not, the
server drops the packet.
When you use both the nas-ip and hwtacacs nas-ip commands, the following guidelines apply:
The setting configured by using the nas-ip command in HWTACACS scheme view is only for the
•
HWTACACS scheme.
The setting configured by using the hwtacacs nas-ip command in system view is for all HWTACACS
•
schemes.
The setting in HWTACACS scheme view takes precedence over the setting in system view.
•
Examples
# Set the IP address for the device to use as the source address for HWTACACS packets to 129.10.10.1.
<Sysname> system-view
[Sysname] hwtacacs nas-ip 129.10.10.1
Related commands
nas-ip (HWTACACS scheme view)
hwtacacs scheme
Use hwtacacs scheme to create an HWTACACS scheme and enter its view.
Use undo hwtacacs scheme to delete an HWTACACS scheme.
Syntax
hwtacacs scheme hwtacacs-scheme-name
undo hwtacacs scheme hwtacacs-scheme-name
Default
No HWTACACS scheme exists.
Views
System view
55
Advertisement
Table of Contents
