Configuring Hwtacacs Authentication Servers - H3C S3610 Series Operation Manual
Aaa & radius & hwtacacs
Hide thumbs
Also See for S3610 Series:
- Operation manual (175 pages) ,
- Quick start manual (84 pages) ,
- Command manual (54 pages)
Table of Contents
Advertisement
Operation Manual – AAA & RADIUS & HWTACACS
H3C S3610&S5510 Series Ethernet Switches
Caution:
The system supports up to 16 HWTACACS schemes. You can only delete the schemes
that are not being used.
1.5.2 Configuring HWTACACS Authentication Servers
Table 1-23 Configure HWTACACS authentication servers
Operation
Enter system view
Create a HWTACACS
scheme and enter its
view
Set the IP address and
port
number
primary
authentication server
Set the IP address and
port
number
secondary
authentication server
Caution:
The primary and secondary authentication servers cannot use the same IP address.
Otherwise, the system will prompt unsuccessful configuration.
You can remove a server only when it is not used by any active TCP connection for
sending authentication packets.
Command
system-view
hwtacacs
hwtacacs-scheme-name
primary authentication
of
the
ip-address
TACACS
[ port-number ]
secondary
of
the
authentication
TACACS
ip-address
[ port-number ]
1-35
Chapter 1 AAA & RADIUS & HWTACAC
Description
—
Required
scheme
By default, no HWTACACS
scheme exists.
Required
By default, the IP address of
the primary authentication
server is 0.0.0.0, and the
TCP port number is 49
Required
By default, the IP address of
the
authentication
0.0.0.0, and the TCP port
number is 49.
S Configuration
secondary
server
is
Advertisement
Table of Contents
