Vpn-Instance (Hwtacacs Scheme View) - HP 6125XLG Command Reference Manual

Predefined user roles
network-admin
Parameters
keep-original: Sends the username to the HWTACACS server as it is entered.
with-domain: Includes the ISP domain name in the username sent to the HWTACACS server.
without-domain: Excludes the ISP domain name from the username sent to the HWTACACS server.
Usage guidelines
A username is typically in the format userid@isp-name, of which isp-name is used by the device to
determine the ISP domain to which a user belongs. However, some HWTACACS servers cannot
recognize a username containing an ISP domain name. Before sending a username including a domain
name to such an HWTACACS server, the device must remove the domain name. This command allows
you to specify whether to include a domain name in a username to be sent to an HWTACACS server.
If an HWTACACS scheme defines that the username is sent without the ISP domain name, do not apply
the HWTACACS scheme to more than one ISP domain. The HWTACACS server regards two users in
different ISP domains but with the same userid as one.
Examples
# Configure the device to remove the ISP domain name from the username sent to the HWTACACS
servers specified in HWTACACS scheme hwt1.
<Sysname> system-view
[Sysname] hwtacacs scheme hwt1
[Sysname-hwtacacs-hwt1] user-name-format without-domain
Related commands
display hwtacacs scheme

vpn-instance (HWTACACS scheme view)

Use vpn-instance to specify a VPN for an HWTACACS scheme.
Use undo vpn-instance to remove the configuration.
Syntax
vpn-instance vpn-instance-name
undo vpn-instance
Default
The HWTACACS scheme belongs to the public network.
Views
HWTACACS scheme view
Predefined user roles
network-admin
Parameters
vpn-instance-name: Name of the MPLS L3VPN, a case-sensitive string of 1 to 31 characters.
74