Figure 3 – H3C Technologies H3C SecPath F1000-E User Manual

5

Figure 3 HWTACACS server configuration

Table 3

lists the HWTACACS server configuration items.

Table 3 HWTACACS server configuration items

Configuration item

Description

Server Type

Select the type of the server to be configured, which can be Authentication
Server, Authorization Server and Accounting Sever.

Primary Server IP

Type the IP address of the primary server.
When no primary server is specified, the primary server IP address and the
primary server TCP port are empty.
If you leave the IP address text box empty, it means the primary server (if
configured) will be removed.
The specified IP address of the primary server cannot be the same as that of the

secondary server.

Primary Server TCP Port

Type the TCP port of the primary server.
You need to configure different TCP port numbers for different service types.

Secondary Server IP

Type the IP address of the secondary server.
When no secondary server is specified, the secondary server IP and the

secondary server TCP port are empty.
If you leave the IP address text box empty, it means the secondary server (if
configured) will be removed.
The specified IP address of the primary server cannot be the same as that of the
secondary server.

Secondary Server TCP Port

Type the TCP port of the secondary server.
You need to configure different TCP port numbers for different service types.

Shared Key

Select the check box and type the shared key of the server in the text box.
The HWTACACS client (the NAS) and HWTACACS server use the MD5
algorithm to encrypt packets exchanged between them and a shared key to

verify the packets. Only when the same key is used can they properly receive the
packets and make responses.

Confirm Shared Key

Type the shared key for confirmation, which must be consistent with the shared
key.