Aaa For Ppp Users By An Hwtacacs Server - HP A6600 Configuration Manual
Hide thumbs
Also See for A6600:
- Configuration manual (426 pages) ,
- Getting started (222 pages) ,
- Limited warranty (41 pages)
Table of Contents
Advertisement
Configuration procedure
Configure the router.
1.
# Configure the IP address of interface GigabitEthernet 1/0/1, through which the Telnet user accesses
the router.
<Router> system-view
[Router] interface gigabitethernet 1/0/1
[Router-GigabitEthernet1/0/1] ip address 192.168.1.70 255.255.255.0
[Router-GigabitEthernet1/0/1] quit
# Enable the Telnet server on the router.
[Router] telnet server enable
# Configure the router to use AAA for Telnet users.
[Router] user-interface vty 0 4
[Router-ui-vty0-4] authentication-mode scheme
[Router-ui-vty0-4] quit
# Create local user named telnet.
[Router] local-user telnet
[Router-luser-telnet] service-type telnet
[Router-luser-telnet] password simple aabbcc
[Router-luser-telnet] quit
# Configure the AAA methods for the ISP domain as local authentication and authorization.
[Router] domain system
[Router-isp-system] authentication login local
[Router-isp-system] authorization login local
[Router-isp-system] quit
Verify the configuration.
2.
When Telnetting to the router, a user can access the user interface of the router by using username
telnet@system and correct password.
# Use display connection to view the connection information on the router.
[Router] display connection
Index=1
,Username=telnet@system
IP=192.168.1.58
IPv6=N/A
Total 1 connection(s) matched.
AAA for PPP users by an HWTACACS server
Network requirements
As shown in
provide authentication, authorization, and accounting services for PPP users.
Set the shared keys for authenticating AAA packets exchanged with the HWTACACS server to expert.
Configure the router to send usernames without domain names to the HWTACACS server.
Figure
14, configure the router to use the HWTACACS server to assign IP addresses and
55
Advertisement
Table of Contents
Troubleshooting
