Configuring Accounting Methods For An Isp Domain - HPE FlexNetwork MSR Series Comware 5 Security Configuration Manual
Hide thumbs
Also See for FlexNetwork MSR Series:
- Configuration manual (861 pages) ,
- Comware 7 layer 3 - ip services configuration manuals (554 pages) ,
- Comware 5 layer 2 - wan access configuration manual (420 pages)
Table of Contents
Advertisement
Step
8.
Specify the authorization
method for portal users.
9.
Specify the authorization
method for PPP users.
10. Specify the authorization
method for SSL VPN
users.
11. Specify the authorization
method for VoIP users.
Configuring accounting methods for an ISP domain
In AAA, accounting is a separate process at the same level as authentication and authorization. This
process sends accounting start/update/end requests to the specified accounting server. Accounting
is optional.
AAA supports the following accounting methods:
•
No accounting (none)—The NAS does not perform accounting for the users.
•
Local accounting (local)—Local accounting is implemented on the NAS. It counts and
controls the number of concurrent users who use the same local user account. It does not
provide statistics for charging. The maximum number of concurrent users using the same local
user account is set by the access-limit command in local user view.
•
Remote accounting (scheme)—The NAS works with a RADIUS server or HWTACACS server
for accounting. You can configure local or no accounting as the backup method, which will be
used when the remote server is not available.
By default, an ISP domain uses the local accounting method.
Configuration prerequisites
Before configuring accounting methods, complete the following tasks:
1.
For RADIUS or HWTACACS accounting, configure the RADIUS or HWTACACS scheme to be
referenced first. The local and none accounting methods do not require a scheme.
2.
Determine the access type or service type to be configured. With AAA, you can configure an
accounting method for each access type and service type to limit the accounting protocols that
can be used for access.
3.
Determine whether to configure an accounting method for all access types or service types.
Command
•
In non-FIPS mode:
authorization portal { local | none |
radius-scheme
radius-scheme-name [ local ] }
•
In FIPS mode:
authorization portal { local |
radius-scheme
radius-scheme-name [ local ] }
•
In non-FIPS mode:
authorization ppp
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | none | radius-scheme
radius-scheme-name [ local ] }
•
In FIPS mode:
authorization ppp
{ hwtacacs-scheme
hwtacacs-scheme-name [ local ] |
local | radius-scheme
radius-scheme-name [ local ] }
authorization ssl-vpn radius-scheme
radius-scheme-name
authorization voip radius-scheme
radius-scheme-name
50
Remarks
Optional.
The default authorization
method is used by default.
Optional.
The default authorization
method is used by default.
Optional.
The default authorization
method is used by default.
Optional.
The default authorization
method is used by default.
Advertisement
Table of Contents
Troubleshooting
Need help?
Do you have a question about the FlexNetwork MSR Series and is the answer not in the manual?