Filter
Top Products
432 CHAPTER 21: 802.1X CONFIGURATION
Configuration Procedure
1 Add a Telnet user.
For details about configuring FTP and Telnet users, refer to User Interface
Configuration in the Getting Started chapter.
2 Configure remote authentication mode for the Telnet user, that is, scheme mode.
[SW5500-ui-vty0-4]authentication-mode scheme
3 Configure domain.
[SW5500]domain cams
[SW5500-isp-cams]quit
4 Configure RADIUS scheme.
[SW5500]radius scheme cams
[SW5500-radius-cams]primary authentication 10.110.91.146 1812
[SW5500-radius-cams]key authentication expert
[SW5500-radius-cams]server-type 3com
[SW5500-radius-cams]user-name-format without-domain
5 Configuration association between domain and RADIUS.
[SW5500-radius-cams]quit
[SW5500]domain cams
[SW5500-isp-cams]scheme radius-scheme cams
Configuring the FTP/Telnet User Local Authentication
Configuring local authentication for FTP users is similar to that for Telnet users. The
following example is based on Telnet users.
Networking Requirements
Configure the router to authenticate the login Telnet users locally (see Figure 111).
Networking Diagram
Figure 111 Local Authentication for Telnet Users
Configuration Procedure
1 Method 1: Using Local scheme.
a Apply AAA authentication to Telnet users.
[SW5500-ui-vty0-4]authentication-mode scheme
b Create a local user telnet.
[SW5500]local-user telnet
[SW5500-luser-telnet]service-type telnet
[SW5500-luser-telnet]password simple 3com
[SW5500-luser-telnet]attribute idle-cut 300 access-limit 5
[SW5500]domain system
[SW5500-isp-system]scheme local
Telnet users use usernames in the “userid@system” format to log onto the network
and are to be authenticated as users of the system domain.
Internet
telnet user
Internet
Internet
telnet user
Internet