Operation Manual – Getting Started
H3C VG Series Voice Gateways
Chapter 2 Fundamental Configuration
2-17
I. Configuring login authentication and authorization scheme list
You can configure user login authentication and authorization as local database
authentication and authorization, RADIUS server authentication and authorization, or
none.
Perform the following configuration in system view.
Table 2-10
Configure AAA login authentication and authorization
Operation
Command
Configure login authentication
and authorization scheme list
aaa authentication-scheme login
{
default
|
scheme-name
} {
method
[
method
] }
Delete authentication and
authorization scheme list of a
specified user
undo aaa authentication-scheme login
{
default
|
scheme-name
}
By default, the login authentication and authorization scheme list is
aaa
authentication-scheme login default local
.
You can also define a scheme list name
scheme-name
.
method
refers to the authentication and authorization scheme list and must be set as
one or two among the following methods:
local
: Perform authentication and authorization locally.
radius
: Perform authentication and authorization using RADIUS server.
none
: Perform no authentication and authorization, thus any user can access the VG
without authentication and authorization.
If the scheme list name
scheme-name
is not defined, execution order for authentication
and authorization in the default scheme list will be adopted.
II. Starting login authentication and authorization scheme list
You start login authentication and authorization when you select login authentication
and authorization scheme list.
The VG supports four login modes: console (Console port), telnet (Telnet), http (HTTP)
and ftp (FTP). They can use different login authentication and authorization scheme
lists.
Note:
If no administrator is configured,
console
login mode requires no authentication and
authorization while
telnet
login mode still requires.