HP 12500 Series Configuration Manual page 59

Remote accounting (scheme)—The access device works with a RADIUS server or HWTACACS
•
server for accounting of users. You can configure local or no accounting as the backup method,
which will be used when the remote server is not available.
By default, an ISP domain uses the local accounting method.
Before configuring accounting methods, complete the following tasks:
For RADIUS or HWTACACS accounting, configure the RADIUS or HWTACACS scheme to be
1.
referenced first. The local and none accounting methods do not require a scheme.
Determine the access type or service type to be configured. With AAA, you can configure an
2.
accounting method for each access type and service type, limiting the accounting protocols that
can be used for access.
Determine whether to configure an accounting method for all access types or service types.
3.
Follow these steps when you configure AAA accounting methods for an ISP domain:
If you configure the accounting optional command, the limit on the number of local user
•
connections is not effective.
The accounting method specified with the accounting default command is for all types of users and
•
has a priority lower than that for a specific access type.
• If you specify
hwtacacs-scheme-name local option when configuring an accounting method, local accounting is
the backup method and is used only when the remote server is not available.
If you specify only the local or none keyword in an accounting method configuration command, the
•
switch has no backup accounting method and performs only local accounting or does not perform
any accounting.
• Accounting is not supported for FTP services.
To configure AAA accounting methods for an ISP domain:
Step
1. Enter system view.
2. Enter ISP domain view.
3. Enable the accounting
optional feature.
4. Specify the default accounting
method for all types of users.
5. Specify the command
accounting method.
the radius-scheme
Command
system-view
domain isp-name
accounting optional
accounting default { hwtacacs-scheme
hwtacacs-scheme-name [ local ] | local
| none | radius-scheme
radius-scheme-name [ local ] }
accounting command
hwtacacs-scheme
hwtacacs-scheme-name
49
radius-scheme-name local or hwtacacs-scheme
Remarks
N/A
N/A
Optional.
Disabled by default.
With the accounting optional
feature, a switch allows users to
use network resources when no
accounting server is available
or communication with all
accounting servers fails.
Optional.
The default setting is local.
The none keyword is not
supported in FIPS mode.
Optional.
The default accounting method
is used by default.