Specifying the hwtacacs authentication servers, Specifying the hwtacacs authorization servers, Required.) – H3C Technologies H3C S6300 Series Switches User Manual

Page 48

Specifying the HWTACACS authentication servers

You can specify one primary authentication server and a maximum of 16 secondary authentication

servers for an HWTACACS scheme. When the primary server is not available, the device searches for
the secondary servers in the order they are configured. The first secondary server in active state is used

for communication.
If redundancy is not required, specify only the primary server. An HWTACACS server can function as the

primary authentication server in one scheme and as the secondary authentication server in another
scheme at the same time.
To specify HWTACACS authentication servers for an HWTACACS scheme:

Step Command

Remarks

Enter system view.

system-view

N/A

Enter HWTACACS
scheme view.

hwtacacs scheme hwtacacs-scheme-name

N/A

Specify HWTACACS

authentication servers.

•

Specify the primary HWTACACS

authentication server:

primary authentication { host-name |
ipv4-address | ipv6 ipv6-address }

[ port-number | key { cipher | simple }

string | single-connection ] *

•

Specify a secondary HWTACACS

authentication server:

secondary authentication { host-name
| ipv4-address | ipv6 ipv6-address }

[ port-number | key { cipher | simple }

string | single-connection] *

Configure at least one command.
By default, no authentication

server is specified.
Two HWTACACS authentication
servers in a scheme, primary or

secondary, cannot have the same

combination of hostname, IP
address, and port number.

Specifying the HWTACACS authorization servers

You can specify one primary authorization server and a maximum of 16 secondary authorization servers
for an HWTACACS scheme. When the primary server is not available, the device searches for the

secondary servers in the order they are configured. The first secondary server in active state is used for

communication.
If redundancy is not required, specify only the primary server. An HWTACACS server can function as the
primary authorization server of one scheme and as the secondary authorization server of another

scheme at the same time.
To specify HWTACACS authorization servers for an HWTACACS scheme:

Step Command

Remarks

Enter system view.

system-view

N/A

Enter HWTACACS

scheme view.

hwtacacs scheme
hwtacacs-scheme-name

N/A

This manual is related to the following products:

H3C S5820V2 Series Switches H3C S5830 Series Switches H3C S5830V2 Series Switches H3C S3600V2 Series Switches