Operation Manual – AAA-RADIUS-HWTACACS
H3C S3610&S5510 Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-33
Caution:
z
If the RADIUS server and the security policy server reside on the same physical
device, you do not need to configure the IP address of the security policy server.
z
The specified security policy server must be a security policy server or RADIUS
server that is correctly configured and working normally. Otherwise, the device will
regard it as an illegal server.
1.4.12 Enabling the Listening Port of the RADIUS Client
Follow these steps to enable the listening port of the RADIUS client:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Enable the listening port
of the RADIUS client
radius client enable
Optional
Enabled by default
1.5 Configuring HWTACACS
1.5.1 Creating a HWTACACS scheme
The HWTACACS protocol is configured on a per scheme basis. Before performing
other HWTACACS configurations, follow these steps to create a HWTACACS scheme
and enter HWTACACS scheme view:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a HWTACACS
scheme and enter
HWTACACS scheme
view
hwtacacs scheme
hwtacacs-scheme-name
Required
Not defined by default
Note:
z
Up to 16 HWTACACS schemes can be configured.
z
A scheme can be deleted only when it is not referenced.