Support User Manuals

3Com 5500-SI Switch User Manual

Open as PDF

of 686

Configuring HWTACACS 617

Configuring HWTACACS

Authentication Servers

Perform the following configuration in HWTACACS view.

The primary and secondary authentication servers cannot use the same IP address.

The default port number is 49.

If you execute this command repeatedly, the new settings will replace the old settings.

The authentication server can be deleted only when there is no active TCP connection

used for sending authentication packets.

Configuring HWTACACS

Accounting Servers and

the Related Attributes

Configuring HWTACACS accounting servers

Perform the following configuration in HWTACACS view.

The primary and secondary accounting servers cannot use the same IP address. The

default port number is 49.

If you execute this command repeatedly, the new settings will replace the old settings.

Enabling stop-accounting packet retransmission

Perform the following configuration in the corresponding view.

By default, stop-accounting packet retransmission is enabled, and the maximum

number of transmission attempts is 100.

Table 673 Configuring HWTACACS authentication servers

Operation Command

Configure the HWTACACS primary

authentication server.

primary authentication ip-address [ port ]

Delete the HWTACACS primary authentication

server.

undo primary authentication

Configure the HWTACACS secondary

authentication server.

secondary authentication ip-address [ port ]

Delete the HWTACACS secondary

authentication server.

undo secondary authentication

Table 674 Configuring HWTACACS accounting servers

Operation Command

Configure the primary TACACS accounting

server.

primary accounting ip-address [ port ]

Delete the primary TACACS accounting server. undo primary accounting

Configure the secondary TACACS accounting

server.

secondary accounting ip-address [ port ]

Delete the secondary TACACS accounting

server.

undo secondary accounting

Table 675 Configuring stop-accounting packet retransmission

Operation Command

Enable stop-accounting packet retransmission

and set the allowed maximum number of

transmission attempts (HWTACACS view)

retry stop-accounting retry-times

Disable stop-accounting packet retransmission

(HWTACACS view)

undo retry stop-accounting

Clear the stop-accounting request packets that

have no response (User view)

reset stop-accounting-buffer

hwtacacs-scheme hwtacacs-scheme-name

previous next