Tacacs+ Server Configuration - HP GbE2c - Blc Layer 2/3 Fiber SFP Option Command Reference Manual
Hp gbe2c ethernet blade switch for c-class bladesystem command reference guide
Hide thumbs
Also See for GbE2c - Blc Layer 2/3 Fiber SFP Option:
- Interface manual (209 pages) ,
- Application manual (165 pages) ,
- Cli reference manual (153 pages)
Table of Contents
Advertisement
The following table describes the RADIUS Server Configuration Menu options.
Table 81
RADIUS Server Configuration Menu options
Command
prisrv <IP address>
secsrv <IP address>
secret <1-32 characters>
secret2 <
1-32 characters
port <UDP port number>
retries <1-3>
timeout <1-10>
telnet enable|disable
secbd enable|disable
on
off
cur
IMPORTANT:
If RADIUS is enabled, you must login using RADIUS authentication when connecting via the
console or Telnet/SSH/HTTP/HTTPS. Backdoor for console is always enabled, so you can connect using
noradius and the administrator password even if the backdoor (telnet) or secure backdoor (secbd) are
disabled.
If Telnet backdoor is enabled (telnet ena), type in noradius as a backdoor to bypass RADIUS checking,
and use the administrator password to log into the switch. The switch allows this even if RADIUS servers are
available.
If secure backdoor is enabled (secbd ena), type in noradius as a backdoor to bypass RADIUS checking,
and use the administrator password to log into the switch. The switch allows this only if RADIUS servers are not
available.
TACACS+ server configuration
Command: /cfg/sys/tacacs+
[TACACS+ Server Menu]
prisrv
secsrv
secret
secret2 - Set secret for secondary TACACS+ server
port
retries - Set number of TACACS+ server retries
timeout - Set timeout value of TACACS+ server retries
telnet
secbd
cmap
usermap - Set user privilege mappings
on
off
cur
>
- Set IP address of primary TACACS+ server
- Set IP address of secondary TACACS+ server
- Set secret for primary TACACS+ server
- Set TACACS+ port number
- Enable/disable TACACS+ back door for telnet/ssh/http/https
- Enable/disable TACACS+ secure backdoor for telnet/ssh/http/https
- Enable/disable TACACS+ new privilege level mapping
- Enable TACACS+ authentication
- Disable TACACS+ authentication
- Display current TACACS+ settings
Description
Sets the primary RADIUS server address.
Sets the secondary RADIUS server address.
This is the shared secret between the switch and the RADIUS server(s).
This is the secondary shared secret between the switch and the RADIUS
server(s).
Enter the number of the User Datagram Protocol (UDP) port to be
configured, between 1500-3000. The default is 1645.
Sets the number of failed authentication requests before switching to a
different RADIUS server. The range is 1-3 requests The default is 3
requests.
Sets the amount of time, in seconds, before a RADIUS server
authentication attempt is considered to have failed. The range is 1-10
seconds. The default is 3 seconds.
Enables or disables the RADIUS back door for telnet/SSH/ HTTP/HTTPS.
This command does not apply when secure backdoor (
enabled.
Enables or disables the RADIUS back door using secure password for
telnet/SSH/ HTTP/HTTPS. This command does not apply when backdoor
(telnet) is enabled.
Enables the RADIUS server.
Disables the RADIUS server. This is the default.
Displays the current RADIUS server parameters.
) is
secbd
Configuration Menu 94
Hide quick links:
Advertisement
Table of Contents
