Authentication/Authorization For Ssh/Telnet Users By A Radius Server - HP 5500 HI Series Configuration Manual

2. Verify the configuration:
Telnet to the switch as a user and enter the username hello@bbb and the correct password. You
pass authentication and log in to the switch. Issuing the display connection command on the switch,
you can see information about the user connection.
Authentication/authorization for SSH/Telnet users by a
RADIUS server
The configuration of authentication and authorization for SSH users is similar to that for Telnet users. The
following example describes the configuration for SSH users.
Network requirements
As shown in
authorization, and to include the domain name in a username sent to the RADIUS server.
Configure IMC to act as the RADIUS server, add an account with the username hello@bbb on the
RADIUS server, and configure the RADIUS server to assign the privilege level of 3 to the user after the
user passes authentication.
Set the shared keys for secure RADIUS communication to expert.
Figure 13 Network diagram
Configuring the RADIUS server
This example assumes that the RADIUS server runs on IMC PLAT 5.0 (E0101) and IMC UAM 5.0 (E0101).
1. Add the switch to IMC as an access device:
a. Log in to IMC, click the Service tab, and select User Access Manager > Access Device from the
navigation tree.
b. Click Add.
c. Configure the following parameters:
Set the shared key for secure authentication and accounting communication to expert.
Specify the ports for authentication and accounting as 1812 and 1813, respectively.
Select Device Management Service as the service type.
Select HP(A-Series) as the access device type.
Select the switch from the device list or manually add the switch with the IP address of
10.1.1.2.
d. Click OK.
Figure 13, configure the switch to use the RADIUS server for SSH user authentication and
53