Local authentication of ftp/telnet users, Local authentication of ftp/telnet users -25 – H3C Technologies H3C WX3000 Series Unified Switches User Manual

25-25

Configuration procedure

# Enter system view.

system-view

# Adopt AAA authentication for Telnet users.

[device] user-interface vty 0 4

[device-ui-vty0-4] authentication-mode scheme

[device-ui-vty0-4] quit

# Configure an ISP domain.

[device] domain cams

[device-isp-cams] access-limit enable 10

[device-isp-cams] quit

# Configure a RADIUS scheme.

[device] radius scheme cams

[device-radius-cams] accounting optional

[device-radius-cams] primary authentication 10.110.91.164 1812

[device-radius-cams] key authentication aabbcc

[device-radius-cams] server-type Extended

[device-radius-cams] user-name-format with-domain

[device-radius-cams] quit

# Associate the ISP domain with the RADIUS scheme.

[device] domain cams

[device-isp-cams] scheme radius-scheme cams

A Telnet user logging into the device by a name in the format of userid @cams belongs to the cams
domain and will be authenticated according to the configuration of the cams domain.

Local Authentication of FTP/Telnet Users

The configuration procedure for local authentication of FTP users is similar to that for Telnet users. The
following text only takes Telnet users as example to describe the configuration procedure for local
authentication.

Network requirements

In the network environment shown in

Figure 27-2

, you are required to configure the device so that the

Telnet users logging into the switching engine are authenticated locally.

Figure 27-2

Local authentication of Telnet users

Internet

Telnet user

Switch