Network requirements, Network diagram, Configuration procedure – H3C Technologies H3C S3600 Series Switches User Manual
Page 918
1-28
Under Protocol options, select 2 from Preferred SSH protocol version.
3) As shown in
, click Open. If the connection is normal, you will be prompted to enter the
user name client001 and password abc. Once authentication succeeds, you will log in to the
server.
When Switch Acts as Server for Password and RADIUS Authentication
Network requirements
As shown in
, an SSH connection is required between the host (SSH client) and the switch
(SSH server) for secure data exchange. Password and RADIUS authentication is required.
z
The host runs SSH2.0 client software to establish a local connection with the switch.
z
The switch cooperates with a RADIUS server to authenticate SSH users.
Network diagram
Figure 1-14 Switch acts as server for password and RADIUS authentication
Configuration procedure
1) Configure the RADIUS server
This document takes CAMS Version 2.10 as an example to show the basic RADIUS server
configurations required.
# Add an access device.
Log in to the CAMS management platform and select System Management > System Configuration
from the navigation tree. In the System Configuration page, click Modify of the Access Device item,
and then click Add to enter the Add Access Device page and perform the following configurations:
z
Specify the IP address of the switch as 192.168.1.70.
z
Set both the shared keys for authentication and accounting packets to expert.
z
Select LAN Access Service as the service type.
z
Specify the ports for authentication and accounting as 1812 and 1813 respectively.
z
Select Extensible Protocol as the protocol type.