Table of Contents
Advertisement
authentication process neither sends authorization information to a supplicant nor
triggers any accounting. You can configure AAA to use only authentication. If you
do not perform any authentication configuration, the system-default ISP domain
uses the local authentication scheme.
Before configuring an authentication scheme, complete these three tasks:
For RADIUS or HWTACACS authentication, configure the RADIUS or
■
HWTACACS scheme to be referenced first. The local and none authentication
modes do not require any scheme.
Determine the access mode or service type to be configured. With AAA, you
■
can configure an authentication scheme specifically for each access mode and
service type, limiting the authentication protocols that can be used for access.
Determine whether to configure an authentication scheme for all access modes
■
or service types.
Follow these steps to configure an AAA authentication scheme for an ISP domain:
To do...
Enter system view
Create an ISP domain and
enter ISP domain view
Specify the default
authentication scheme for all
types of users
Specify the authentication
scheme for LAN access users
Specify the authentication
scheme for login users
Specify the authentication
scheme for Portal users
Specify the authentication
scheme for PPP users
Specify the authentication
scheme for VoIP users
Use the command...
system-view
domain isp-name
authentication default
{ hwtacacs-scheme
hwtacacs-scheme-name
[ local ] | local | none|
radius-scheme
radius-scheme-name [ local ]}
authentication lan-access
{ local | none |
radius-scheme
radius-scheme-name
[ local ] }
authentication login
{ hwtacacs-scheme
hwtacacs-scheme-name
[ local ] | local | none |
radius-scheme
radius-scheme-name
[ local ] }
authentication portal
{ none | radius-scheme
radius-scheme-name }
authentication ppp
{ hwtacacs-scheme
hwtacacs-scheme-name
[ local ] | local | none |
radius-scheme
radius-scheme-name
[ local ] }
authentication voip
radius-scheme
radius-scheme-name
Configuring AAA
1763
Remarks
-
Required
Optional
local by default
Optional
Optional
The default authentication
scheme is used by default.
Optional
The default authentication
scheme is used by default.
Optional
The default authentication
scheme is used by default.
Optional
The default authentication
scheme is used by default.
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
Need help?
Do you have a question about the MSR 50 Series and is the answer not in the manual?
Questions and answers