HP 830 Series Configuration Manual page 23

Poe+ unified wired-wlan switch

Hide thumbs Also See for 830 Series:

Configuration manual (530 pages)

Command reference manual (136 pages)

Installation manual (58 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

Table of Contents

device. Administrators should also switch to a lower privilege level if they either leave temporarily or

someone else manages the device temporarily.

Configuring the authentication parameters for user privilege level switching

A user can switch to a lower privilege level without authentication. To switch to a higher privilege level,

a user must provide the privilege level switching authentication information (if any).

privilege level switching authentication modes supported by the device.

Table 8 Privilege level switching authentication modes

Authentication

mode

Local password

authentication

only (local-only)

Remote AAA

authentication

through

HWTACACS or

RADIUS

Local password

authentication

first and then

remote AAA

authentication

Remote AAA

authentication

first and then

local password

authentication

To configure the authentication parameters for a user privilege level:

Step

Enter system view.

Set the authentication mode

for user privilege level

switching.

Keywords

Description

The device uses the locally configured passwords for privilege level

switching authentication.

local

To use this mode, you must set the passwords for privilege level switching

using the super password command.

The device sends the username and password for privilege level switching to

the HWTACACS or RADIUS server for remote authentication.

To use this mode, you must perform the following configuration tasks:

•

Configure the required HWTACACS or RADIUS schemes and configure

scheme

the ISP domain to use the schemes for users. For more information, see

Security Configuration Guide.

•

Add user accounts and specify the user passwords on the HWTACACS or

RADIUS server.

The device first uses the locally configured passwords for privilege level

local

switching authentication. If no local password is set, the device allows

scheme

console users to switch their privilege levels without authentication, but

performs AAA authentication for AUX and VTY users.

AAA authentication is performed first, and if the remote HWTACACS or

scheme

RADIUS server does not respond or AAA configuration on the device is

local

invalid, the local password authentication is performed.

Command

system-view

super authentication-mode { local

| scheme } *

Table 8

Remarks

N/A

Optional.

By default, local-only

authentication is used.

shows the

Table of Contents

Show Quick Links

Hide quick links:

Table of Contents

This manual is also suitable for:

10500 7500

HP 830 Series Configuration Manual page 23

Hide quick links:

Related Manuals for HP 830 Series

Related Products for HP 830 Series

This manual is also suitable for:

Table of Contents