H3C S3100-52P Operation Manual page 11
Aaa - radius - hwtacacs
Hide thumbs
Also See for S3100-52P:
- Operation manual (955 pages) ,
- Command manual (55 pages) ,
- Installation manual (54 pages)
Table of Contents
Advertisement
Operation Manual – AAA – RADIUS – HWTACACS
H3C S3100-52P Ethernet Switch
User
User
User
User
Requests to log in
Requests to log in
Requests username
Requests username
Enters username
Enters username
Requests password
Requests password
Enters password
Enters password
Allows user to log in
Allows user to log in
Figure 1-6 AAA implementation procedure for a telnet user
The basic message exchange procedure is as follows:
1)
A user sends a login request to the switch acting as a TACACS client, which then
sends an authentication start request to the TACACS.
2)
The TACACS server returns an authentication response, asking for the username.
Upon receiving the response, the TACACS client requests the user for the
username.
3)
After receiving the username from the user, the TACACS client sends an
authentication continuance message carrying the username.
4)
The TACACS server returns an authentication response, asking for the password.
Upon receiving the response, the TACACS client requests the user for the login
password.
5)
After receiving the password, the TACACS client sends an authentication
continuance message carrying the password to the TACACS server.
6)
The TACACS server returns an authentication response, indicating that the user
has passed the authentication.
7)
The TACACS client sends a user authorization request to the TACACS server.
HWTACACS
HWTACACS
HWTACACS
HWTACACS
Client
Client
Client
Client
Exits the sw itch
Exits the sw itch
Chapter 1 AAA & RADIUS & HWTACACS
Authentication start request
Authentication start request
Authentication respon
Authentication respon
se,
se,
requesting username
requesting username
Authentication continuanc
Authentication continuanc
e message,
e message,
carrying username
carrying username
Authentication respon
Authentication respon
se,
se,
requesting password
requesting password
Authentication continuanc
Authentication continuanc
e message,
e message,
carrying passw ord
carrying passw ord
Authentication success response
Authentication success response
Authori z ation request
Authori z ation request
Authori z ation success response
Authori z ation success response
Accounting start request
Accounting start request
Accounting start response
Accounting start response
Accounting stop request
Accounting stop request
Accounting stop response
Accounting stop response
1-9
Configuration
HWTACACS
HWTACACS
HWTACACS
HWTACACS
Server
Server
Server
Server
Advertisement
Table of Contents
