Troubleshooting aaa, Troubleshooting radius, Symptom 1 – H3C Technologies H3C SecBlade LB Cards User Manual

86

* Without the owner's prior written consent, *

* no decompiling or reverse-engineering shall be allowed. *

******************************************************************************

Login authentication

Username:test@bbb

Password:

?

User view commands:

ping Ping function

quit Exit from current command view

ssh2 Establish a secure shell client connection

super Set the current user priority level

telnet Establish one TELNET connection

tracert Trace route function

When switching to user privilege level 3, the Telnet user only needs to enter password pass3 as

prompted.

super 3

Password:

User privilege level is 3, and only those commands can be used

whose level is equal or less than this.

Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE

If the RADIUS authentication is not available, the Telnet user needs to enter password 654321 as
prompted for local authentication.

super 3

Password:

Å Enter the password for RADIUS privilege level switching authentication.

Error: Invalid configuration or no response from the authentication server.

Info: Change authentication mode to local.

Password:

Å Enter the password for local privilege level switching authentication.

User privilege level is 3, and only those commands can be used

whose level is equal or less than this.

Privilege note: 0-VISIT, 1-MONITOR, 2-SYSTEM, 3-MANAGE

Troubleshooting AAA

Troubleshooting RADIUS

Symptom 1

User authentication/authorization always fails.

Analysis

Possible reasons include:

•

A communication failure exists between the NAS and the RADIUS server.

•

The username is not in the format userid@isp-name or the ISP domain is not correctly configured on
the NAS.