Support User Manuals

3Com 10014298 Switch User Manual

Open as PDF

of 294

238 CHAPTER 9: AAA AND RADIUS OPERATION

AAA, RADIUS, and

HWTACACS Protocol

Configuration

Examples

AAA/RADIUS protocol configuration commands are generally used together with

802.1x configuration commands. Refer to the typical configuration examples

provided in

“Configuring 802.1x” on page 209.

Configuring FTP/Telnet

User Authentication at

Remote RADIUS Server

Configuring Telnet user authentication at the remote server is similar to

configuring FTP users. The following description is based on Telnet users.

In the environment illustrated in the following figure, the the RADIUS server must

be configured to authenticate the Telnet users to be registered.

One RADIUS server (the authentication server) is connected to the switch and the

server IP address is 10.110.91.146. The password for exchanging messages

between the switch and the authentication server is "expert". The switch cuts off

domain name from username and sends the left part to the RADIUS server.

Clear stop-accounting packets from the buffer reset stop-accounting-buffer {

radius-scheme radius-scheme-name

| session-id session-id |

time-range start-time stop-time |

user-name user-name }

Reset the statistics of RADIUS server reset radius statistics

Clear stop-accounting packets from the buffer reset stop-accounting-buffer

hwtacacs-scheme

hwtacacs-scheme-name

Reset the statistics of HWTACACS server reset hwtacacs statistics {

accounting | authentication |

authorization | all }

Enable RADIUS packet debugging debugging radius packet

Disable RADIUS packet debugging undo debugging radius packet

Enable debugging of local RADIUS

authentication server

debugging local-server { all |

error | event | packet }

Disable debugging of local RADIUS

authentication server

undo debugging local-server { all

| error | event | packet }

Enable HWTACACS debugging debugging hwtacacs { all | error

| event | message |

receive-packet | send-packet }

Disable HWTACACS debugging undo debugging hwtacacs { all |

error | event | message |

receive-packet | send-packet }

Table 256 Displaying and Debugging AAA and RADIUS/HWTACACS Protocol

Operation Command

previous next