Authentication for telnet users by an ldap server, Network requirements, Configuration procedure – H3C Technologies H3C WX3000E Series Wireless Switches User Manual

63

[AC-isp-test] authentication default radius-scheme rad

[AC-isp-test] authorization default radius-scheme rad

[AC-isp-test] accounting default radius-scheme rad

[AC-isp-test] quit

2.

Verify the configuration

After the user passes authentication and logs in, issue the display connection command on the AC. You

can see information about the user.

Authentication for Telnet users by an LDAP server

Network requirements

As shown in

Figure 13

, Active Directory of the Microsoft Windows 2003 Server as an LDAP server at

10.1.1.1/24 and the server domain name is ldap.com. On the LDAP server, set the administrator
password as admin!123456, and add a user with the username of aaa and password of ldap!123456.

Configure the AC to use the LDAP server to authenticate Telnet users.

Figure 13 Network diagram

Configuration procedure

The AC does not support LDAP authorization. You can configure an HWTACACS scheme as the
authorization scheme to work with LDAP authentication. For more information about HWTACACS

scheme configuration, see "

Configuring HWTACACS schemes

."

1.

Configure the LDAP server

# Add a user named aaa.

•

On the LDAP server, select Start > Control Panel > Administrative Tools, and double-click Active
Directory Users and Computers to open the Active Directory Users and Computers interface.

•

Select Action > New > User from the menu.

•

Type aaa in the textboxes as shown in

Figure 14

and click Next.

LDAP server

10.

1.1.1/24

IP network

Telnet user

192.168.1.21/24

Vlan-int2

10.1.1.2/24