3-7
Telnet Configuration with Authentication Mode Being Scheme
Configuration Procedure
Follow these steps to configure Telnet with the authentication mode being scheme:
To do…
Use the command…
Remarks
Enter system view
system-view
—
Enter one or more VTY user
interface views
user-interface vty
first
-
number
[
last-number
]
—
Configure to authenticate
users in the scheme mode
authentication-mode
scheme
[
command-
authorization
]
Required
The specified AAA scheme
determines what authentication
mode is adopted, local, RADIUS or
HWTACACS.
Users are authenticated locally by
default.
Quit to system view
quit
—
Enter the
default ISP
domain view
domain
d
omain-name
Configure the
AAA scheme
to be applied
to the domain
scheme
{
local
|
none
|
radius-scheme
radius-scheme-name
[
local
] |
hwtacacs-scheme
hwtacacs-scheme-name
[
local
] }
Configure
the
authenticati
on scheme
Quit to
system view
quit
Optional
By default, the local AAA scheme is
applied. If you specify to apply the
local AAA scheme, you need to
perform the configuration
concerning local user as well.
If you specify to apply RADIUS or
HWTACACS scheme, you need to
perform the following configuration
as well:
z
Perform AAA&RADIUS
configuration on the switch.
(Refer to the AAA part for more.)
z
Configure the user name and
password accordingly on the
AAA server. (Refer to the user
manual of AAA server.)
Create a local user and enter
local user view
local-user
user-name
No local user exists by default.
Set the authentication
password for the local user
password
{
simple
|
cipher
}
password
Required
Specify the service type for
VTY users
service-type telnet
[
level
level
]
Required
Note that:
If you configure to authenticate the users in the scheme mode, the command level available to the users
logging in to the switch depends on the user level defined in the AAA scheme.
z
When the AAA scheme is local, the user level depends on the
service-type
{
ftp
|
lan-access
|
{
ssh
|
telnet
|
terminal
}* [
level level
] } command.
z
When the AAA scheme is RADIUS or HWTACACS, you need to specify the user level of a user on
the corresponding RADIUS or HWTACACS server.
Содержание Switch 4800G PWR 24-Port
Страница 165: ...1 8 4 mac address es found on port GigabitEthernet1 0 2 ...
Страница 214: ...ii Displaying and Maintaining System Guard 4 1 ...
Страница 445: ...ii ...
Страница 727: ...i Table of Contents Appendix A Acronyms A 1 ...
Страница 730: ...A 3 VOD Video On Demand W WRR Weighted Round Robin X XID eXchange Identification XRN eXpandable Resilient Networking ...