HP A3100-16 v2 EI, A3100-16 v2 SI, A3100-16-PoE v2 EI, A3100-24 v2 EI, A3100-24-PoE v2 EI, A3100-8 DC EI, A3100-8 v2 SI, A3100-8-PoE v2 EI, JD311B, JD312B, JD313B, JD318B, JD320B, JG221A, JG222A, JG223A Configuring authentication and authorization on the FTP server

To do…	Use the command…	Remarks
Use an ACL to control FTP clients’		Optional
Use an ACL to control FTP clients’	ftp server acl acl-number	By default, no ACL is used to control
access to the switch	ftp server acl acl-number	By default, no ACL is used to control
access to the switch		FTP clients’ access to the switch.
		FTP clients’ access to the switch.

		Optional
		30 minutes by default.
Configure the idle-timeout timer	ftp timeout minutes	Within the idle-timeout time, if there is
Configure the idle-timeout timer	ftp timeout minutes	no information interaction between
		no information interaction between
		the FTP server and client, the
		connection between them is
		terminated.

Set the file update mode for the FTP	ftp update { fast normal }	Optional
server	ftp update { fast normal }	Normal update is used by default.
server		Normal update is used by default.

Quit to user view	quit	—

Manually release the FTP		Optional
connection established with the	free ftp user username	Optional
connection established with the	free ftp user username	Available in user view
specified username		Available in user view
specified username

Configuring authentication and authorization on the FTP server

To allow an FTP user to access certain directories on the FTP server, you must create an account for the user, authorizing access to the directories and associating the username and password with the account.

The following configuration is used when the FTP server authenticates and authorizes a local FTP user. If the FTP server needs to authenticate a remote FTP user, you must configure authentication, authorization and accounting (AAA) policy instead of the local user. For detailed configuration, see the Security Command Reference.

In local authentication, the switch checks the input username and password against those configured on the switch. In remote authentication, the switch sends the input username and password to the remote authentication server, which then checks whether they are consistent with those configured on the switch.

Follow these steps to configure authentication and authorization for FTP server:

To do…	Use the command…	Remarks
Enter system view	system-view	—

		Required
Create a local user and enter its	local-user user-name	No local user exists by default, and
view	local-user user-name	the system does not support FTP
view		the system does not support FTP
		anonymous user access.

Assign a password to the user	password { simple cipher }	Required
Assign a password to the user	password	Required
	password

		Required
		By default, the system does not
Assign the FTP service to the user	service-type ftp	support anonymous FTP access,
Assign the FTP service to the user	service-type ftp	and does not assign any service. If
		the FTP service is assigned, the root
		directory of the switch is used by
		default.

	92

HP Configuring authentication and authorization on the FTP server

Models: A3100-16 v2 EI A3100-16 v2 SI A3100-16-PoE v2 EI A3100-24 v2 EI A3100-24-PoE v2 EI A3100-8 DC EI A3100-8 v2 SI A3100-8-PoE v2 EI JD311B JD312B JD313B JD318B JD320B JG221A JG222A JG223A