Aaa configuration examples, Per user type aaa configuration example, Network requirements – H3C Technologies H3C S3100 Series Switches User Manual
Page 445: Configuration procedure
2-31
Operation
Command
Remarks
Delete buffered non-response
stop-accounting requests
reset stop-accounting-buffer
hwtacacs-scheme
hwtacacs-scheme-name
AAA Configuration Examples
Per User Type AAA Configuration Example
Network Requirements
As shown in
, Host A, serving as an 802.1X user, accesses the network through Ethernet
1/0/1 of Switch, and Host B, serving as a telnet user, accesses the network through Ethernet 1/0/2 of
Switch.
z
Configure the switch to use the RADIUS server to provide authentication, authorization, and
accounting services for users. The IP address of the server is 10.110.91.164.
z
Set the shared keys for authentication, authorization, and accounting packets exchanged with the
RADIUS server to aabbcc. Configure the switch to remove the domain name from a username
before sending the username to the RADIUS server.
z
Configure the switch to perform RADIUS authentication for Host A and local authentication for Host
B.
Figure 2-2 Configure different authentication methods based on user access types
Configuration Procedure
# Enter system view.
<Switch> system-view
# Configure the authentication method for telnet users.
[Switch] user-interface vty 0 4
[Switch-ui-vty0-4] authentication-mode scheme
# Configure the test domain.
[Switch] domain test
[Switch-isp-test] access-limit enable 10
[Switch-isp-test] quit