beautypg.com

Specifying the hwtacacs accounting servers – H3C Technologies H3C S6300 Series Switches User Manual

Page 49

background image

34

Step Command

Remarks

3.

Specify HWTACACS

authorization servers.

Specify the primary HWTACACS
authorization server:

primary authorization { host-name |

ipv4-address | ipv6 ipv6-address }
[ port-number | key { cipher |

simple } string | single-connection ]

*

Specify a secondary HWTACACS

authorization server:

secondary authorization
{ host-name | ipv4-address | ipv6

ipv6-address } [ port-number | key

{ cipher | simple } string |
single-connection ] *

Configure at least one command.
By default, no authorization server

is specified.
Two HWTACACS authorization
servers in a scheme, primary or

secondary, cannot have the same

combination of hostname, IP
address, and port number.

Specifying the HWTACACS accounting servers

You can specify one primary accounting server and a maximum of 16 secondary accounting servers for

an HWTACACS scheme. When the primary server is not available, the device searches for the

secondary servers in the order they are configured. The first secondary server in active state is used for

communication.
If redundancy is not required, specify only the primary server. An HWTACACS server can function as the

primary accounting server of one scheme and as the secondary accounting server of another scheme at

the same time.
HWTACACS does not support accounting for FTP, SFTP, and SCP users.
To specify HWTACACS accounting servers for an HWTACACS scheme:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enter HWTACACS
scheme view.

hwtacacs scheme
hwtacacs-scheme-name

N/A

3.

Specify HWTACACS
accounting servers.

Specify the primary HWTACACS

accounting server:

primary accounting { host-name |
ipv4-address | ipv6 ipv6-address }

[ port-number | key { cipher |

simple } string | single-connection ]
*

Specify a secondary HWTACACS

accounting server:
secondary accounting { host-name |

ipv4-address | ipv6 ipv6-address }

[ port-number | key { cipher |
simple } string | single-connection ]

*

Configure at least one command.
By default, no accounting server is
specified.
Two HWTACACS accounting
servers in a scheme, primary or

secondary, cannot have the same

combination of hostname, IP
address, and port number.

This manual is related to the following products:
See also other documents in the category H3C Technologies Routers: