Table of Contents
Advertisement
You can remove an authorization server only when it is not used for user authorization. Removing an
authorization server affects only authorization processes that occur after the remove operation.
Examples
# In HWTACACS scheme hwt1, specify a secondary authorization server with IP address
10.163.155.13, TCP port number 49, and plaintext shared key 123456TESTautr&!.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1] secondary authorization 10.163.155.13 49 key simple
123456TESTautr&!
Related commands
display hwtacacs scheme
key (HWTACACS scheme view)
primary authorization (HWTACACS scheme view)
vpn-instance (HWTACACS scheme view)
stop-accounting-buffer enable (HWTACACS scheme view)
Use stop-accounting-buffer enable to enable buffering of HWTACACS stop-accounting requests
to which no responses have been received.
Use undo stop-accounting-buffer enable to disable buffering of HWTACACS stop-accounting
requests to which no responses have been received.
Syntax
stop-accounting-buffer enable
undo stop-accounting-buffer enable
Default
The device buffers HWTACACS stop-accounting requests to which no responses have been
received.
Views
HWTACACS scheme view
Predefined user roles
network-admin
mdc-admin
Usage guidelines
This command enables the device to buffer an HWTACACS stop-accounting request to which no
response has been received. The device resends the buffered request until it receives a server
response or when the number of transmission attempts reaches the maximum (set by using the retry
stop-accounting command). If no more attempts are available, the device discards the request.
However, if you have removed an accounting server, stop-accounting requests destined for the
server are not buffered.
Examples
# Enable buffering of HWTACACS stop-accounting requests to which no responses have been
received.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1] stop-accounting-buffer enable
137
Advertisement
Table of Contents
