Step

 

Command

Remarks

3.

Enable scheme

 

By default, password

authentication-mode scheme

authentication is enabled on AUX

 

authentication.

 

 

user interfaces.

 

 

 

 

 

 

 

 

 

 

Optional.

4.

Enable command

 

By default, command

command authorization

authorization is disabled. The

 

authorization.

 

commands available for a user

 

 

 

 

 

 

 

 

only depend on the user privilege

 

 

 

level.

 

 

 

 

 

 

 

Optional.

5.

Enable command

command accounting

By default, command accounting

 

accounting.

is disabled. The accounting server

 

 

 

does not record the commands

 

 

 

executed by users.

 

 

 

 

6.

Exit to system view.

quit

N/A

 

 

 

 

 

 

 

Optional.

 

 

a. Enter the ISP domain view:

By default, local authentication is

 

 

domain domain-name

used.

 

 

b. Apply the specified AAA

For local authentication, configure

 

 

scheme to the domain:

local user accounts.

 

 

authentication default

For RADIUS or HWTACACS

7. Apply an AAA authentication

{ hwtacacs-scheme

authentication, configure the

 

scheme to the intended

hwtacacs-scheme-name

 

RADIUS or HWTACACS scheme

 

domain.

[ local ] local none

 

on the device and configure

 

 

radius-scheme

 

 

authentication settings (including

 

 

radius-scheme-name

 

 

the username and password) on

 

 

[ local ] }

 

 

the server.

 

 

c. Exit to system view:

 

 

For more information about AAA

 

 

quit

 

 

configuration, see Access Control

 

 

 

 

 

 

Configuration Guide.

 

 

 

 

8.

Create a local user and enter

local-user user-name

By default, no local user exists.

 

local user view.

 

 

 

 

 

 

 

9.

Set a password for the local

password { cipher simple }

By default, no password is set.

 

user.

password

 

 

 

 

 

 

10. Specifies the command level

 

Optional.

authorization-attribute level level

By default, the command level is

 

of the local user.

 

 

 

0.

11.

Specify terminal service for

service-type terminal

By default, no service type is

 

the local user.

specified.

 

 

 

 

 

 

12.

Configure common AUX user

See "Configuring common settings

Optional.

 

interface settings.

for AUX login (optional)."

 

 

 

 

 

 

The next time you attempt to log in through the AUX port, you must provide the configured username and password, as shown in Figure 40.

43

Page 49
Image 49
HP 200 Unified Threat Management (UTM) Appliance manual Apply the specified AAA