Configuring aaa schemes, Configuring local users – H3C Technologies H3C S7500E Series Switches User Manual
Page 31
2-2
Task
Remarks
Schemes
Complete at least one
task.
Required
Configuring ISP Domain Attributes
Optional
Configuring AAA Authentication Methods for an ISP
Configuring AAA Authorization Methods for an ISP
Configuring AAA Accounting Methods for an ISP
Required
Complete at least one
task.
Tearing Down User Connections Forcibly
Optional
Configuring a NAS ID-VLAN Binding
Optional
Displaying and Maintaining AAA
Optional
For login users, you must configure the login authentication mode for the user interfaces as scheme
before performing the above configurations. For more information, see CLI Login in the Fundamentals
Configuration Guide.
Configuring AAA Schemes
Configuring Local Users
For local authentication, you must create local users and configure user attributes on the device in
advance. The local users and attributes are stored in the local user database on the device. A local
user is uniquely identified by a username. Configurable local user attributes include:
z
Service type
Types of the services for the user to use. Local authentication checks the service types of a local user.
If none of the service types is available, the user cannot pass authentication.
Service types include FTP, LAN access, Portal, SSH, Telnet, and Terminal.
z
User state
Indicates whether a local user can request network services. There are two user states, active and
blocked. The state of active means the user is allowed to request network services. The state of
blocked means the user is not allowed to request network services.
z
Maximum number of users using the same local user account