Configuring Authentication At Remote Radius Server - H3C S9500 Series Operation Manual
Routing switches
Hide thumbs
Also See for S9500 Series:
- Command manual (1842 pages) ,
- Operation manual (1014 pages) ,
- Operating manual (76 pages)
Table of Contents
Advertisement
Operation Manual – AAA RADIUS HWTACACS
H3C S9500 Series Routing Switches
1.6.1 Configuring Authentication at Remote RADIUS Server
Note:
Configuring Telnet user authentication at the remote server is similar to configuring
FTP users. The following description is based on Telnet users.
I. Network requirements
In the environment as illustrated in the following figure, it is required to achieve through
proper configuration that the RADIUS server authenticates the Telnet users to be
registered.
One RADIUS server (as authentication server) is connected to the switch and the
server IP address is 10.110.91.164.
The password for exchanging messages between the switch and the
authentication server is expert. The switch removes domain name from username
and sends the left part to the RADIUS server and uses the local RADIUS scheme
as the backup authentication scheme.
II. Network diagram
te ln et use r
Figure 1-4 Network diagram for the remote RADIUS authentication of Telnet users
III. Configuration procedure
# Configure remote authentication mode for Telnet users, i.e. Scheme mode.
<H3C> system-view
[H3C] user-interface vty 0 4
[H3C-ui-vty0-4] authentication-mode scheme
[H3C-ui-vty0-4] quit
# Configure a domain.
[H3C] domain cams
Chapter 1 AAA, RADIUS and HWTACACS
A uth en tica ti on Se rve rs
( IP A d dre ss: 10 .11 0.9 1.1 64 )
Sw itch
Inte rn rt
1-37
Protocol Configuration
Advertisement
Chapters
Table of Contents
Troubleshooting
