H3C S5120-EI Series Operation Manual page 881

When the RADIUS or HWTACACS authentication mode is used, the user levels are set on the
corresponding RADIUS or HWTACACS servers.
For more information about AAA, RADIUS, and HWTACACS, see AAA Configuration in the Security
Volume.
Configuration Example
1) Network requirements
Assume that you are a level 3 AUX user and want to perform the following configuration for Telnet users
logging in to VTY 0:
Configure the name of the local user to be "guest".
Set the authentication password of the local user to 123456 (in plain text).
Set the service type of VTY users to Telnet.
Configure to authenticate users logging in to VTY 0 in scheme mode.
The commands of level 2 are available to users logging in to VTY 0.
Telnet protocol is supported in VTY 0.
The screen can contain up to 30 lines.
The history command buffer can store up to 20 commands.
The timeout time of VTY 0 is 6 minutes.
Network diagram
Figure 3-6 Network diagram for Telnet configuration (with the authentication mode being scheme)
2) Configuration procedure
Configure the switch
# Enter system view, and enable the Telnet service.
<Sysname> system-view
[Sysname] telnet server enable
# Create a local user named guest and enter local user view.
[Sysname] local-user guest
# Set the authentication password of the local user to 123456 (in plain text).
[Sysname-luser-guest] password simple 123456
# Set the service type to Telnet.
[Sysname-luser-guest] service-type
# Enter VTY 0 user interface view.
[Sysname] user-interface vty 0
3-9