Typical Examples For Configuring Aaa; Example I For Authenticating Access Users - H3C SecPath F1800-A Operation Manual

Operation Manual - Security Defence
H3C SecPath F1800-A Firewall
Table 5-61 Displaying and debugging AAA, RADIUS, HWTACACS
View the AAA information.
View the
authentication scheme.
View the
authorization scheme.
View
recording scheme.
View the RADIUS server.
View the usage of address pool.
View
information.
View the attributes of local user.
Debug the RADIUS packet.
Disable
debugging.
Debug the HWTACACS server.
Disable the HWTACACS server
debugging.
Reset statistics of HWTACACS
server.

5.8 Typical Examples for Configuring AAA

5.8.1 Example I for Authenticating Access Users

I. Networking Requirement
Authenticate the users through a RADIUS server. The users belong to domain
Huawei-3Com.
The RADIUS server at 129.7.66.66 acts as the primary authentication server. the
RADIUS server at 129.7.66.67 acts as the secondary authentication server. The
authentication port default to Port1812 respectively.
Action
configuration of
configuration of
the configuration
the HWTACACS server
the RADIUS packet
display aaa configuration
an display
[ scheme-name ]
an
display
[ scheme-name ]
of a display
[ scheme-name ]
display radius-server
[ template template-name ]
display ip
domain-name }
display hwtacacs-server
[ template-name [ verbose ] ]
display local-user [ domain domain-name |
username user-name ]
debugging radius packet
undo debugging radius packet
debugging hwtacacs { all | error | event |
message | receive-packet | send-packet }
undo debugging hwtacacs { all | error |
event | message | receive-packet |
send-packet }
reset hwtacacs-server statistics { all |
authentication | authorization }
6-121
Chapter 5 AAA
Command
authentication-scheme
authorization-scheme
recording-scheme
configuration
pool { global | domain
template