Hello, everybody!
This post is about the HWTACACS authentication configuration template. Please check more details below.
BACKGROUND INFORMATION
We support the deployment of HWTACACS for the device login authentication and authorization with TACACS Server. If the TACACS server fails the authentication, we can deploy the local user for backup.
Table 1-1. HWTACACS authentication example
# hwtacacs-server template h1 hwtacacs-server authentication 1.1.1.1 hwtacacs-server authentication 1.1.1.2 secondary hwtacacs-server authorization 1.1.1.1 hwtacacs-server authorization 1.1.1.2 secondary hwtacacs-server accounting 1.1.1.1 hwtacacs-server accounting 1.1.1.2 secondary hwtacacs-server shared-key cipher MIFON undo hwtacacs-server user-name domain-included # aaa authentication-scheme huawei authentication-mode hwtacacs local authorization-scheme huawei authorization-mode none authorization-cmd 1 hwtacacs local authorization-cmd 15 hwtacacs local accounting-scheme huawei accounting-mode hwtacacs domain default_admin authentication-scheme huawei accounting-scheme huawei authorization-scheme huawei hwtacacs-server h1 # user-interface vty 0 4 authentication-mode aaa user privilege level 15 # ssh authentication-type default password # |
This would be all on the HWTACACS authentication configuration template. Thanks for reading this post!