Operation Manual – AAA-RADIUS-HWTACACS
H3C S3610&S5510 Series Ethernet Switches
Chapter 1 AAA/RADIUS/HWTACACS
Configuration
1-34
1.5.2 Specifying the HWTACACS Authentication Servers
Follow these steps to specify the HWTACACS authentication servers:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a HWTACACS
scheme and enter
HWTACACS scheme
view
hwtacacs scheme
hwtacacs-scheme-name
Required
Not defined by default
Configure the IP address
and port of the primary
HWTACACS
authentication server
primary authentication
ip-address
[
port-number
]
Required
The defaults are as
follows:
0.0.0.0 for the IP address,
and 49 for the TCP port.
Configure the IP address
and port of the secondary
HWTACACS
authentication server
secondary
authentication
ip-address
[
port-number
]
Required
The defaults are as
follows:
0.0.0.0 for the IP address,
and 49 for the TCP port.
Note:
z
The IP addresses of the primary and secondary authentication servers cannot be
the same. Otherwise, the configuration fails.
z
You can remove an authentication server only when no active TCP connection for
sending authentication packets is using it.
1.5.3 Specifying the HWTACACS Authorization Servers
Follow these steps to specify the HWTACACS authorization servers:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Create a HWTACACS
scheme and enter
HWTACACS scheme
view
hwtacacs scheme
hwtacacs-scheme-name
Required
Not defined by default