3Com 10014302 manual Example, Warning Reach the max limited of server in one template

Page 42

3Com Router Command Reference Guide Addendum for V1.2

Each TACACS+ server group allows only one primary authentication server, one primary authorization server, and one primary accounting server. When you configure a second primary server, there will be prompt information, the previous primary AAA server will be changed into a common server, and the newly configured server will be taken as the primary one.

If the number of servers configured in a template exceeds the allowed upper threshold, the following prompt will be displayed:

Warning: Reach the max limited of server in one template.

If the host-nameargument has not been mapped to an IP address using the ip host command, the configuration will fail, and the following prompt will be displayed:

Warning: no such host.

If the specified server to be deleted using the undo host command is the specified primary AAA server in the server group, the following prompts will be displayed:

Warning: The Server is a authen-primary Server.

Warning: The Server is a author-primary Server.

Warning: The Server is a account-primary Server.

If configuring undo host with the parameter authen-primaryor author-primaryor account-primary, you will only disable the primary server property of the server rather than removing the server from the server group.

When you attempt to configure a second primary authentication, authorization, or accounting server, the following prompts will be displayed:

Warning: Only permit one authen-primary Server.

Warning: Only permit one author-primary Server.

Warning: Only permit one account-primary Server.

For related commands, see hwtacacs-server template and timer quiet.

Example

#Configure TACACS+ servers in the TACACS+ server group tactemplate1, and specify the server at 1.1.1.1 as the primary AAA server in tactemplate1.

[Router] hwtacacs-server template tactemplate1 [Router-hwtacacs-tactemplate1]host ip 1.1.1.1 authen-primary

[Router-hwtacacs-tactemplate1] host ip 1.1.1.1 author-primary

[Router-hwtacacs-tactemplate1] host ip 1.1.1.1 account-primary

[Router-hwtacacs-tactemplate1] host ip 1.1.1.2

42

Image 42

Contents Command Reference Guide Addendum for 3Com RouterPublished January Download the 3Com Router Command Reference Guide from Download the Router 3000 Installation Guide fromDownload the Router 5000 Installation Guide from Download the 3Com Router Configuration Guide fromSyntax Chapter 1 CBQ Configuration Commands1.1 af View1.2 car car cir rate cbs size ebs size conform action exceed actionundo car 1.3 debugging qos number1.4 display qos cbq interface display qos cbq interface type numberdisplay qos class class-name 1.5 display qos class1.6 display qos policy display qos policy policy-name class class-name3Com display qos policy 1.7 display qos policy interface display qos policy interface type number inbound outboundBehaviors Default Queue Flow Based Fair Queueing 1.8 ef ef bandwidth bandwidth cbs size undo ef1.9 gts gts cir rate cbs size ebs size queue-length length undo gts1.10 if-match acl if-match logic-not acl acl-numberundo if-match logic-not acl acl-number 1.11 if-match any access-list-number ACL numberif-match logic-not any undo if-match logic-not any 1.12 if-match class if-match logic-not class class-nameundo if-match logic-not class class-name 1.13 if-match criteria if-match logic-not criteria undo if-match logic-not criterianumber Interface number 1.14 if-match inbound-interface1.15 if-match ip-dscp if-match logic-not inbound-interface type number1.16 if-match ip-precedence if-match logic-not ip-precedence value value …undo if-match logic-not ip-precedence value value … 1.17 if-match mac-address if-match logic-not destination-mac source-mac mac-addressundo if-match logic-not destination-mac source-mac mac-address 1.18 if-match protocol if-match logic-not protocol ipundo if-match logic-not protocol ip qmtoken token-number 1.19 if-match rtp1.20 qmtoken undo qmtoken1.21 qos apply policy 1.22 qos class qos class logic-and logic-or class-nameundo qos class logic-and logic-or class-name 1.23 qos max-bandwidth qos max-bandwidth kilobits undo qos max-bandwidth1.24 qos policy qos policy policy-name undo qos policy policy-name1.25 qos reserved-bandwidth qos reserved-bandwidth pct percent undo qos reserved-bandwidthqos-class class-name undo qos-class class-name 1.26 qos-class1.27 queue-length queue-length queue-length undo queue-length queue-length1.28 remark ip-dscp remark ip-dscp value undo remark ip-dscp value1.29 remark ip-precedence remark ip-precedence value undo remark ip-precedence valuewfq queue-number total-queue-number 1.30 wfq1.31 wred undo wfqdiscard-prob 1.32 wred ip-dscpundo wred ip-dscp ip-precedence undo wred ip-dscp dscp-valueDescription 1.33 wred ip-precedence undo wred ip-precedence value1.34 wred weighting-constant wred weighting-constant exponent undo wred weighting-constantChapter 2 TACACS+ Configuration Commands 2.1 debugging hwtacacsinterface-type interface-number Interface name and number 2.2 display hwtacacs accounting Example 2.3 display hwtacacs server 2.4 domain For a related command, see reset hwtacacs server statisticsdomain undo domain 2.5 host Parameter Warning Reach the max limited of server in one template 2.6 hwtacacs-server template reset hwtacacs accounting statistics 2.7 reset hwtacacs accounting statistics2.8 reset hwtacacs server statistics reset hwtacacs server statistics2.9 shared-key shared-key key-string2.10 source-ip undo source-ip2.11 timer quiet 3.2 debugging ssh server Chapter 3 SSH Configuration Commands3.1 debugging rsa debugging rsa undo debugging rsa3.3 display rsa local-key-pair public display rsa local-key-pair public3Com display rsa local-key-pair public 3.4 display rsa peer-public-key display rsa peer-public-key brief name keyname3.5 display ssh server display ssh server status sessiondisplay ssh user-information username 3.6 display ssh user-information3.7 hex hex hex-dataD6C54A36 3.8 kill ssh kill ssh all userID userid3.9 protocol inbound protocol inbound ssh telnet numbers acl acl-number3.10 public-key-code begin public-key-code begin3.11 public-key-code end public-key-code end3.12 rsa local-key-pair create rsa local-key-pair create3.13 rsa local-key-pair destroy rsa local-key-pair destroy3.14 rsa peer-public-key rsa peer-public-key key-name undo rsa peer-public-key key-name3.15 ssh server authentication-retries ssh server authentication-retries timesundo ssh server authentication-retries ssh server timeout seconds undo ssh server timeout 3.17 ssh server timeout3.16 ssh server rekey-interval ssh server rekey-interval hours undo ssh server rekey-interval3.18 ssh user username assign rsa-key ssh user username assign rsa-key keynameundo ssh user username assign rsa-key 3.19 ssh user authentication-type ssh user username authentication-type password RSA allundo ssh user username authentication-type password RSA all 3Com ssh user smith authentication-type password Chapter 4 NTP Configuration Commands 4.1 debugging ntp-service4.2 display ntp-service sessions display ntp-service sessions verbose4.3 display ntp-service status display ntp-service status4.4 display ntp-service trace display ntp-service trace4.5 ntp-service access ntp-service access query synchronization server peer acl-numberundo ntp-service access query synchronization server peer ntp-service authentication enable 4.6 ntp-service authentication enable4.7 ntp-service authentication-keyid undo ntp-service authentication enable4.8 ntp-service broadcast-client ntp-service broadcast-client undo ntp-service broadcast-client4.9 ntp-service broadcast-server ntp-service max-dynamic-sessions number 4.10 ntp-service max-dynamic-sessions4.11 ntp-service multicast-client undo ntp-service max-dynamic-sessions4.12 ntp-service multicast-server undo ntp-service multicast-server4.13 ntp-service refclock-master 4.14 ntp-service reliable authentication-keyid ntp-service reliable authentication-keyid numberundo ntp-service reliable authentication-keyid number 4.15 ntp-service source-interface undo ntp-service source-interface4.16 ntp-service source-interface disable 4.17 ntp-service unicast-peerundo ntp-service unicast-peer 4.18 ntp-service unicast-server undo ntp-service unicast-server3Com ntp-service unicast-server 128.108.22.44 version 5.2 display x25 x2t route Chapter 5 X2T Configuration Commands5.1 debugging x25 x2t debugging x25 x2t all event packetdisplay x25 x2t switch-table 5.3 display x25 x2t switch-table5.4 translate ip translate ip ip-address port port-number x25 x.121-address5.5 translate undo translate ip ip-address port port-numberRoutertranslate x25 12322 ip 10.110.54.19 port Chapter 6 Additional ISDN Configuration Commands 6.1 isdn ignore callednum6.2 isdn ignore hlc 3Com-E1-0 interface serial 215 3Com-serial215 isdn ignore callednum6.3 isdn ignore llc 6.4 isdn waitconnectackView 6.5 display isdn spidSyntax Parameter6.6 isdn ignore dchan Example6.7 isdn protocol-type 6.8 isdn q931-timer undo isdn q931-timer timer-name all6.9 isdn spid auto-trigger 6.10 isdn spid nit 6.11 isdn spid timer 6.12 isdn spid resend 6.13 isdn spid service 3Com-bri0 isdn spid service data 3Com-bri0/0 isdn spid service speechExample 6.14 isdn spid1 6.15 isdn spid23Com-bri0 isdn spid2