找回密码
 立即注册
用户级别切换认证配置举例关键词:用户级别切换认证,RADIUS,HWTACACS摘要:本文结合不同的登录认证方式,详细介绍了三种用户级别切换认证的配置思路和配置过程。组网需求(1)某部门的所有人员均能以Telnet方式登录网关设备,登录该设备时需要输入用户名和密码,并使用HWTACACS服务器进行认证,认证通过后所能访问的命令级别为0级(访问级),可执行网络诊断等功能的命令(例如ping)。其中,用户名为携带域名的admin@bbb,密码为123456。(2)允许管理员将自身级别切换到更高的级别(本例中为3),且切换时需要使用HWTACACS服务器进行认证。当远程Super认证无效时(例如服务器无响应或AAA配置无效),需要本地Super认证做备份方案来保证切换操作可完成。其中,远程Super认证的级别切换密码为pass3,本地Super认证的级别切换密码为localpass。

(Examples of user level switching authentication configuration Keywords: user level switching authentication, radius, hwtaccs Abstract: This paper introduces in detail the configuration ideas and processes of three user level switching authentication combined with different login authentication methods. Networking requirements (1) all personnel of a department can log in to the gateway device by telnet. When logging in to the device, they need to enter the user name and password, and use the hwtaccs server for authentication. After the authentication, the command level that can be accessed is level 0 (access level), and the command of network diagnosis and other functions can be executed (such as ping). Where, the user name is the one carrying the domain name admin@bbb , password is 123456. (2) The administrator is allowed to switch his level to a higher level (3 in this example), and the hwtaccs server is required to authenticate when switching. When the remote super authentication is invalid (such as no response from the server or invalid AAA configuration), the local super authentication is required as a backup scheme to ensure that the switching operation can be completed. Among them, the level switching password of remote super authentication is pass3, and the level switching password of local super authentication is localpass.)

[下载]11501368176.rar




上一篇:F5巡检手册
下一篇:VTP三层交换机及跨Vlan通信详细配置