beautypg.com

Protocols and standards, Radius attributes, Commonly used standard radius attributes – H3C Technologies H3C S7500E Series Switches User Manual

Page 25: Commonly used, Standard radius attributes

background image

1-12

z

Portal users: Users who must pass portal authentication to access the network.

For a user who has logged in to the device, AAA provides the following services to enhance device

security:

z

Command authorization: Allows the authorization server to check each command executed by

the login user and only authorized commands can be successfully executed. For more

information about command authorization, see CLI Login in the Fundamentals Configuration

Guide.

z

Command accounting: Allows the accounting server to record all commands executed on the

device or all authorized commands successfully executed. For more information about command

accounting, see CLI Login in the Fundamentals Configuration Guide.

z

Level switching authentication: Allows the authentication server to authenticate users performing

privilege level switching. As long as passing level switching authentication, users can switch their

user privilege levels, without logging out and disconnecting the current connections. For more

information about user privilege level switching, see CLI Configuration in the Fundamentals

Configuration Guide.

You can configure different authentication, authorization, and accounting methods for different users in

a domain. For more information about the configuration, see

Configuring AAA Methods for ISP

Domains

.

Protocols and Standards

The protocols and standards related to AAA, RADIUS, and HWTACACS include:

z

RFC 2865: Remote Authentication Dial In User Service (RADIUS)

z

RFC 2866: RADIUS Accounting

z

RFC 2867: RADIUS Accounting Modifications for Tunnel Protocol Support

z

RFC 2868: RADIUS Attributes for Tunnel Protocol Support

z

RFC 2869: RADIUS Extensions

z

RFC 1492: An Access Control Protocol, Sometimes Called TACACS

RADIUS Attributes

Commonly Used Standard RADIUS Attributes

Table 1-4 Commonly used standard RADIUS attributes

No.

Attribute

Description

1

User-Name

Name of the user to be authenticated

2 User-Password

User password for PAP authentication, present only in Access-Request packets

in PAP authentication mode.

3 CHAP-Password

Digest of the user password for CHAP authentication, present only in

Access-Request packets in CHAP authentication mode.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: