Configuring AAA 219

Table 230 Configure Relevant Attributes of ISP Domain

 

 

Operation

Command

 

 

Set the idle

idle-cut { disable enable

 

minute flow }

 

 

By default, after an ISP domain is created, the used RADIUS server group is the default system (for relevant parameter configuration, refer to “Configuring the RADIUS Protocol ”), the state of domain is active, there is no limit to the amount of supplicants, and the idle-cut is disabled.

Creating a Local User

A local user is a group of users set on NAS. The username is the unique identifier of a user. A supplicant requesting network service may use local authentication only if its corresponding local user has been added onto NAS.

Perform the following configurations in system view.

Table 231 Create/Delete a Local User and Relevant Properties

Operation

Command

 

 

Add local users

local-user user-name

Delete all the local users

undo local-user all

Delete a local user by specifying its type

undo local-user { user-name all

 

[ service-type { lan-access ftp

 

telnet } ] }

 

 

By default, there is no local user in the system.

Setting Attributes of a Local User

The attributes of a local user include its password, state, service type and other settings.

Perform the following configurations in system view.

Table 232 Set the Method that a Local User Uses to Set Password

Operation

Command

 

 

Set the method that a local user uses to set

local-user password-display-mode

password

{ cipher-force auto }

Cancel the method that the local user uses to

undo local-user

set password

password-display-mode

 

 

The auto parameter means that the password display mode will be the one specified by the user at the time of configuring a password (see the password command in the following table for reference), and cipher-forcemeans that the password display mode of all the accessing users must be in cipher text.

Perform the following configurations in local user view.

Table 233 Set/Remove the Attributes Concerned with a Specified User

Operation

Command

 

 

Set a password for a specified user

password { simple cipher }

 

password

Page 219
Image 219
3Com 10014298 Creating a Local User, By default, there is no local user in the system, Setting Attributes of a Local User