HP 6125G HP 6125G & 6125G/XG Blade Switches Security Configuration Gui - Page 43
Specifying the HWTACACS authorization servers
View all HP 6125G manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 43 highlights
Step 2. Enter HWTACACS scheme view. 3. Specify HWTACACS authentication servers. Command Remarks hwtacacs scheme hwtacacs-scheme-name N/A • Specify the primary HWTACACS authentication server: primary authentication ip-address [ port-number | vpn-instance vpn-instance-name ] * • Specify the secondary HWTACACS authentication server: secondary authentication ip-address [ port-number | vpn-instance vpn-instance-name ] * Configure at least one command. No authentication server is specified by default. Specifying the HWTACACS authorization servers You can specify one primary authorization server and up to one secondary authorization server for an HWTACACS scheme. When the primary server is not available, any secondary server is used. In a scenario where redundancy is not required, specify only the primary server. Follow these guidelines when you specify HWTACACS authorization servers: • An HWTACACS server can function as the primary authorization server of one scheme and as the secondary authorization server of another scheme at the same time. • The IP addresses of the primary and secondary authorization servers cannot be the same. Otherwise, the configuration fails. • You can remove an authorization server only when no active TCP connection for sending authorization packets is using it. To specify HWTACACS authorization servers for an HWTACACS scheme: Step 1. Enter system view. 2. Enter HWTACACS scheme view. 3. Specify HWTACACS authorization servers. Command Remarks system-view N/A hwtacacs scheme hwtacacs-scheme-name • Specify the primary HWTACACS authorization server: primary authorization ip-address [ port-number | vpn-instance vpn-instance-name ] * • Specify the secondary HWTACACS authorization server: secondary authorization ip-address [ port-number | vpn-instance vpn-instance-name ] * N/A Configure at least one command. No authorization server is specified by default. Specifying the HWTACACS accounting servers and the relevant parameters You can specify one primary accounting server and up to one secondary accounting server for an HWTACACS scheme. When the primary server is not available, any secondary server is used. In a scenario where redundancy is not required, specify only the primary server. 33