Configuring Aaa Schemes; Configuring Local Users - HP 12500 Series Configuration Manual

Routing
Table of Contents

Advertisement

Task
schemes
Configuring AAA
methods for ISP domains
Tearing down user connections
NOTE:
To control access of login users by using AAA methods, you must configure the login authentication mode
for the user interfaces as scheme. For more information about the configuration command, see
Fundamentals Command Reference

Configuring AAA schemes

Configuring local users

To implement local user authentication, authorization, and accounting, you must create local users and
configure user attributes on the switch. The local users and attributes are stored in the local user database
on the switch. A local user is uniquely identified by a username. Configurable local user attributes are as
follows:
Service type.
The types of the services that the user can use. Local authentication checks the service types of a
local user. If none of the service types is available, the user cannot pass authentication.
Service types include FTP, LAN, portal, PPP, SSH, Telnet, terminal, and Web. FTP and Telnet
service types are not supported in FIPS mode.
User state.
Indicates whether or not a local user can request network services. There are two user states: active
and blocked. A user in active state can request network services, but a user in blocked state
cannot.
Maximum number of users using the same local user account.
Indicates how many users can use the same local user account for local authentication.
Validity time and expiration time.
Indicates the validity time and expiration time of a local user account. A user must use a valid local
user account to pass local authentication. When some users need to access the network
temporarily, you can create a guest account and specify a validity time and an expiration time for
the account to control the validity of the account.
User group.
Configuring RADIUS schemes
Configuring HWTACACS schemes
Creating an ISP domain
Configuring ISP domain attributes
Configuring AAA authentication methods for
an ISP domain
Configuring AAA authorization methods for an
ISP domain
Configuring AAA accounting methods for an
ISP domain
.
19
Remarks
Complete at least one task.
Required.
Optional.
Required.
Complete at least one task.
Optional.

Advertisement

Table of Contents
loading

Table of Contents