Filter
Top Products
1928 CHAPTER 127: AAA CONFIGURATION COMMANDS
Note that the RADIUS scheme specified for the current ISP domain must have
been configured.
Related command: authorization default, radius scheme.
Example # Configure the default ISP domain system to use the local authorization scheme
for LAN access users.
<Sysname> system-view
[Sysname] domain system
[Sysname-isp-system]authorization lan-access local
# Configure the default ISP domain system to use RADIUS authorization scheme
rd for LAN access users and to use the local authorization scheme as the backup
scheme.
<Sysname> system-view
[Sysname] domain system
[Sysname-isp-system] authorization lan-access radius-scheme rd local
authorization login
Syntax authorization login { hwtacacs-scheme hwtacacs-scheme-name [ local ] | local | none
| radius-scheme radius-scheme-name [ local ]}
undo authorization login
View ISP domain view
Parameter hwtacacs-scheme hwtacacs-scheme-name: Specifies an HWTACACS scheme by
its name, which is a string of 1 to 32 characters.
local: Performs local authorization.
none: Does not perform any authorization. In this case, an authenticated user is
automatically authorized with the default right.
radius-scheme radius-scheme-name: Specifies a RADIUS scheme by its name,
which is a string of 1 to 32 characters.
Description Use the
authorization login command to specify the authorization scheme for
login users.
Use the
undo authorization login command to restore the default.
By default, the default authorization scheme is used for login users.
Note that the RADIUS or HWTACACS scheme specified for the current ISP domain
must have been configured.
Related command: authorization default, hwtacacs scheme, radius scheme.