Configuring AAA and RADIUS 537

The pool-numberranges from 0 to 99. Addresses in each address pool must be consecutive, and each address pool can have at most 256 addresses.

Assigning an IP Address For a user accessing the Internet through remote PPP dialing, the system either for a PPP User specifies an address or allocates an unoccupied address selected from a local

address pool to the user.

Perform the following configurations in interface view.

Table 605 Assign IP Address for PPP User

Operation

Command

 

 

Assign IP address for PPP user

remote address { ip-address pool [

 

pool-number ] }

 

 

Cancel IP address of PPP user

undo remote address

 

 

By default pool-numberis 0.

 

Configuring a Local User When a user dials in to access the network, user information is looked up Database according to the following steps in the local user database:

1 Information about the user is sought in the local database. If the information is present, the login of the user is permitted.

2 If the user information is not in the local database and if the RADIUS server authentication is configured, the user information is sent to the RADIUS server for authentication. If authentication succeeds, the user can log on normally. Otherwise, the user is rejected.

3 If the user information is not in the local database and the RADIUS server authentication is not configured, the login of the user is rejected.

Various configuration tasks conducted in the local user database can be nested or combined and all local user databases can be configured in one command.

Perform the following configurations in system view.

Configure a User and Password

The user and the local authentication password can be configured in the local database

Table 606 Configure Ordinary User and Password

Operation

Command

 

 

 

Configure the user and password

local-user user-name[ password {

 

simple cipher

} password ] ...

 

 

 

Delete the user

undo local-user

user-name

 

 

 

user-namecan be a 1-32-bit character string or number. Password can be a 1-16-bit character string or number.

Configure Callback User

In the callback technique, first the client, on the user side, originates a call and requires callback from the server. The server receives the call and decides whether to call back.

Page 541
Image 541
3Com 10014299 manual By default pool-number is, Configure a User and Password, Configure Callback User