Manualshelf

Product manual

ManualsBrandsProCurve ManualsComputer equipment8212zl
21222324252627282930
web-authvid -- Configures VLAN where to move port after successful authentication
(not configured by default). (VLAN-ID) (p. 54)
client-limit < 1 to 32 > -- Set the port's maximum number of authenticated clients (default
1). (NUMBER) (p. 31)
client-moves -- Set whether the client can move between ports (default disabled - no
moves). (p. 31)
logoff-period < 1 to 9999999 > -- Set the period of time of inactivity that the switch
considers an implicit logoff (default 300 seconds). (NUMBER) (p. 36)
max-requests < 1 to 10 > -- Set maximum number of times the switch retransmits
authentication requests (default 3). (NUMBER) (p. 39)
max-retries < 1 to 10 > -- Set number of times a client can enter their credentials before
authentication is considered to have failed (default 3). (NUMBER) (p. 39)
quiet-period < 1 to 65535 > -- Set the period of time the switch does not try to
authenticate (default 60 seconds). (NUMBER) (p. 46)
reauthenticate -- Force re-authentication to happen. (p. 47)
reauth-period < 0 to 9999999 > -- Set the re-authentication timeout in seconds; set to
'0' to disable re-authentication (default 0). (NUMBER) (p. 47)
redirect-url -- Set the URL that the user should be redirected to after successful login
(default none), Specify url up to 103 characters length. (p. 47)
web-redirect-url -- Set the URL that the user should be redirected to after successful
login (default none), Specify url up to 103 characters length. (ASCII-STR) (p. 57)
server-timeout < 1 to 300 > -- Set the authentication server response timeout (default
30 seconds). (NUMBER) (p. 49)
ssl-login -- Set whether to enable SSL login (https on port 443) (default disabled). (p. 50)
unauth-vid -- Configures VLAN where to keep port while there is an unauthorized client
connected (not configured by default). (p. 52)
web-unauthvid -- Configures VLAN where to keep port while there is an unauthorized
client connected (not configured by default). (VLAN-ID) (p. 57)
EXAMPLES
Example: aaa
The following examples show access options, and the corresponding commands to configure them.
Authenticate console enable (Manager) access, using TACACS+ as the primary method and the
switch's local database as the secondary method:
ProCurve(cong)# aaa authentication console enable tacacs local
Authenticate Telnet login (Operator) access, using TACACS+ as the primary method and the switch's
local database as the secondary method:
ProCurve(cong)# aaa authentication Telnet login tacacs local
Authenticate Telnet login (Manager) access, using TACACS+ as the primary method and the switch's
local database as the secondary method:
ProCurve(cong)# aaa authentication telnet enable tacacs local
Deny access and terminate a session after two consecutive failures to provide the correct username
and password:
ProCurve(cong)# aaa authentication num-attempts 2
24© 2008 Hewlett-Packard Development Company, L.P.
aaaCommand Line Interface Reference Guide