Network requirements, Configuration procedure, Verifying the configuration – H3C Technologies H3C SecPath F1000-E User Manual
Page 236
226
Network requirements
As shown in
, configure SecPath to perform local authentication and authorization for Telnet
users.
Figure 167 Network diagram
Configuration procedure
# Configure the IP address of interface GigabitEthernet 0/1, through which the Telnet user accesses
SecPath.
[SecPath] interface GigabitEthernet 0/1
[SecPath-GigabitEthernet0/1] ip address 192.168.1.70 255.255.255.0
[SecPath-GigabitEthernet0/1] quit
# Enable the Telnet server on SecPath.
[SecPath] telnet server enable
# Configure SecPath to use AAA for Telnet users.
[SecPath] user-interface vty 0 4
[SecPath-ui-vty0-4] authentication-mode scheme
[SecPath-ui-vty0-4] quit
# Create local user named telnet.
[SecPath] local-user telnet
[SecPath-luser-telnet] service-type telnet
[SecPath-luser-telnet] password simple aabbcc
[SecPath-luser-telnet] quit
# Configure the AAA methods for the ISP domain as local authentication and authorization.
[SecPath] domain system
[SecPath-isp-system] authentication login local
[SecPath-isp-system] authorization login local
[SecPath-isp-system] quit
Verifying the configuration
A Telnet user can access the user interface of SecPath by using username telnet@system and the correct
password.
# Use the display connection command to view the connection information on SecPath.
[SecPath] display connection
Index=1 ,Username=telnet@system
IP=192.168.1.58
IPv6=N/A
Total 1 connection(s) matched.
- H3C SecPath F5000-A5 Firewall H3C SecPath F1000-A-EI H3C SecPath F1000-E-SI H3C SecPath F1000-S-AI H3C SecPath F5000-S Firewall H3C SecPath F5000-C Firewall H3C SecPath F100-C-SI H3C SecPath F1000-C-SI H3C SecPath F100-A-SI H3C SecBlade FW Cards H3C SecBlade FW Enhanced Cards H3C SecPath U200-A U200-M U200-S H3C SecPath U200-CA U200-CM U200-CS