Configuration of the Remote AAA (HWTACACS Protocol)-HUAWEI

********Remote AAA (HWTACACS Protocol)-GPON*********

User1 in the isp domain adopts the HWTACACS protocol for authentication, authorization, and accounting. The accounting interval is 10 minutes, the authentication password is a123456, HWTACACS server 129.7.66.66 functions as the primary authentication, authorization, and accounting server, and HWTACACS server 129.7.66.67 functions as the standby authentication, authorization, and accounting server. On the HWTACACS server, the parameters adopt the default values. To perform the preceding configuration, do as follows:

OLT(config)#aaa 
OLT(config-aaa)#authentication-scheme newscheme 
OLT(config-aaa-authen-newscheme)#authentication-mode hwtacacs
OLT(config-aaa-authen-newscheme)#quit
OLT(config-aaa)#authorization-scheme newscheme
OLT(config-aaa-author-newscheme)#authorization-mode hwtacacs
OLT(config-aaa-author-newscheme)#quit
OLT(config-aaa)#accounting-scheme newscheme
OLT(config-aaa-accounting-newscheme)#accounting-mode hwtacacs 
OLT(config-aaa-accounting-newscheme)#accounting interim interval 10
OLT(config-aaa-accounting-newscheme)#quit
OLT(config)#hwtacacs-server template hwtest
OLT(config-hwtacacs-hwtest)#hwtacacs-server authentication 129.7.66.66
OLT(config-hwtacacs-hwtest)#hwtacacs-server authentication 129.7.66.67 secondary
OLT(config-hwtacacs-hwtest)#hwtacacs-server authorization 129.7.66.66
OLT(config-hwtacacs-hwtest)#hwtacacs-server authorization 129.7.66.67 secondary
OLT(config-hwtacacs-hwtest)#hwtacacs-server accounting 129.7.66.66
OLT(config-hwtacacs-hwtest)#hwtacacs-server accounting 129.7.66.67 secondary
OLT(config-hwtacacs-hwtest)#quit 
OLT(config)#aaa                                       
OLT(config-aaa)#domain isp                                             
OLT(config-aaa-domain-isp)#authentication-scheme newscheme
OLT(config-aaa-domain-isp)#authorization-scheme newscheme           
OLT(config-aaa-domain-isp)#accounting-scheme newscheme                     
OLT(config-aaa-domain-isp)#hwtacacs-server hwtest 
OLT(config-aaa-domain-isp)#quit

                                             *******END********

Be the first to comment

Leave a Reply

Your email address will not be published.


*


For security, use of Google's reCAPTCHA service is required which is subject to the Google Privacy Policy and Terms of Use.

I agree to these terms.