Network requirements – H3C Technologies H3C SecBlade LB Cards User Manual

82

# Enable the Telnet server on the device.

[LB] telnet server enable

# Configure LB to use AAA for Telnet users.

[LB] user-interface vty 0 4

[LB-ui-vty0-4] authentication-mode scheme

[LB-ui-vty0-4] quit

# Create local user named telnet.

[LB] local-user telnet

[LB-luser-telnet] service-type telnet

[LB-luser-telnet] password simple aabbcc

[LB-luser-telnet] quit

# Configure the AAA methods for the ISP domain as local authentication and authorization.

[LB] domain system

[LB-isp-system] authentication login local

[LB-isp-system] authorization login local

[LB-isp-system] quit

2.

Verify the configuration.
A user can Telnet to the user interface of LB by using username telnet@system and correct
password.
# Use the display connection command to view the connection information on LB.

[LB] display connection

Index=1 ,Username=telnet@system

IP=192.168.1.58

IPv6=N/A

Total 1 connection(s) matched.

Level switching authentication for Telnet users by a RADIUS
server

Network requirements

As shown in

Figure 33

, configure LB to:

•

Use local authentication for the Telnet user and assign the privilege level of 0 to the user when the
user passes authentication.

•

Use the RADIUS server for level switching authentication of the Telnet user. If the RADIUS server is
not available, use local authentication.