Configuring Authentication And Authorization - HP 10500 Series Configuration Manual

Hide thumbs Also See for 10500 Series:

Security configuration manual (596 pages)

Configuration manual (512 pages)

Specifications (42 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

Table of Contents

Step

Enable the FTP server.

(Optional.) Use an ACL to

control access to the FTP

server.

(Optional.) Configure the

idle-timeout interval.

(Optional.) Set the DSCP

value for outgoing FTP

packets.

(Optional.) Set the maximum

number of concurrent FTP

users.

Configuring authentication and authorization

Perform this task on the FTP server to authenticate FTP clients and set the authorized directories that

authenticated clients can access.

The following authentication modes are available:

•

Local authentication—The device looks up the client's username and password in the local user

account database. If a match is found, authentication succeeds.

Remote authentication—The device sends the client's username and password to a remote

•

authentication server for authentication. The user account is configured on the remote

authentication server rather than the device.

The following authorization modes are available:

Local authorization—The device assigns authorized directories to FTP clients based on the locally

•

configured authorization attributes.

Remote authorization—A remote authorization server assigns authorized directories on the device

•

to FTP clients.

For information about configuring authentication and authorization, see Security Configuration Guide.

Command

ftp server enable

ftp server acl { acl-number |

ipv6 acl-number6 }

ftp timeout minutes

•

For an FTP server running

IPv4:

ftp server dscp

dscp-value

•

For an FTP server running

IPv6:

ftp server ipv6 dscp

dscp-value

aaa session-limit ftp

max-sessions

Remarks

By default, the FTP server is disabled.

By default, no ACL is used for access

control.

The default idle-timeout interval is 30

minutes.

If no data is transferred between the FTP

server and FTP client within the

idle-timeout interval, the connection is

terminated.

By default, the DSCP value is 0.

By default, the maximum number of

concurrent FTP users is 16.

Changing this setting does not affect

online users. If the current number of

online FTP users is equal to or greater

than the new setting, no additional FTP

users can log in until online users log out.

For more information about this

command, see Security Command

Reference.

Table of Contents

Show Quick Links

Quick Links:
Using the Cli

Hide quick links:

Table of Contents

Configuring Authentication And Authorization - HP 10500 Series Configuration Manual

Configuring authentication and authorization

Hide quick links:

Troubleshooting

Related Manuals for HP 10500 Series

Related Content for HP 10500 Series

Table of Contents