Viewing Information About Users; Using The Aaa Subsystem To Control Management Access - HP ProCurve Secure 7000dl Series Basic Management And Configuration Manual

Controlling Management Access to the ProCurve Secure Router

Using the AAA Subsystem to Control Management Access

2-14
To disable the SCP server, enter:
Syntax: no ip scp server

Viewing Information about Users

At any time, you can view information about the users who are accessing the
ProCurve Secure Router through the console, Telnet, SSH, FTP, and Web
browser interface. From the enable mode context, enter:
ProCurve# show users
Figure 2-1 shows the type of information that is displayed when you enter this
command. You can view the username that the user entered to obtain access,
the type of access (such as console or Telnet), and the time the connection
has been idle. For Telnet, SSH, FTP, and Web access, you can also view the IP
address of the device from which the user obtained access.
- CONSOLE 0 'password-only' logged in and enabled
Idle for 00:00:00
- TELNET 0 (192.168.20.25:1029) 'geoff' logged in and enabled
Idle for 00:00:09
Figure 2-1. Viewing the Users Who Are Accessing the Router Through the
Console, Telnet, SSH, FTP, and Web Browser Interface
Using the AAA Subsystem to Control
Management Access
Authentication, authorization, and accounting (AAA) is an industry standard
for controlling:
which users can access a system (authentication)
what they can do once they are granted access (authorization)
what is recorded about their activities (accounting)
The AAA subsystem on the ProCurve Secure Router currently supports:
authentication methods configured on the router itself
authentication through Remote Authentication Dial-In User Service
(RADIUS) servers
authentication, authorization, and accounting through TACACS+ servers