beautypg.com

Configuring authentication and authorization – H3C Technologies H3C SecBlade LB Cards User Manual

Page 101

background image

92

Normal mode—The FTP server writes data to the storage medium while receiving data. This means

that any anomaly, such as a power failure, during file transfer might result in file corruption on the
FTP server. This mode, however, consumes less memory space than fast mode.

To configure basic parameters for the FTP server:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

2.

Enable the FTP server.

ftp server enable

By default, the FTP server is disabled.

3.

Use an ACL to control FTP
access to the server.

ftp server acl acl-number

Optional.
By default, no ACL is used for access
control.

4.

Configure the idle-timeout
timer.

ftp timeout minutes

Optional.
The default idle-timeout timer is 30

minutes.
If no data is transferred within the
idle-timeout time, the connection is

terminated.

5.

Set the file update mode for
the FTP server.

ftp update { fast | normal }

Optional.
By default, normal update is used.

6.

Return to user view.

quit

N/A

7.

Manually release the FTP
connection established with

the specified username.

free ftp user username

Optional.

Configuring authentication and authorization

Perform this task on the FTP server to authenticate FTP clients and specify the directories that

authenticated clients can access.
The following authentication modes are available:

Local authentication—The device looks up the client's username and password in the local user
account database. If a match is found, authentication succeeds.

Remote authentication—The device sends the client's username and password to a remote
authentication server for authentication. The user account is configured on the remote

authentication server rather than the device.

To assign an FTP user write access (including upload, delete, and create) to the device, assign level-3
(Manage) user privileges to the user. For read-only access to the file system, any user privilege level is

OK.
For more information, see the chapter on AAA configuration in Security Configuration Guide.
To configure authentication and authorization for the FTP server:

Step Command

Remarks

1.

Enter system view.

system-view

N/A

This manual is related to the following products:
See also other documents in the category H3C Technologies Safety: