Comware

 View Only
Back to discussions
Expand all | Collapse all

RADIUS attributes for SSH login on HP A3100 v2

This thread has been viewed 0 times

  • 1.  RADIUS attributes for SSH login on HP A3100 v2

    Posted Mar 30, 2012 08:25 AM

    Hi,

     

    I'm using a HP A3100-EI v2 with comware 5.20R5103p01.

    I would like to authenticate SSH connection to the CLI using a RADIUS server.

    I manage to configure my RADIUS server (IAS on a windows 2003 server) and my switch as a RADIUS client.

    When trying to open SSH session, I always receive the message "Access Denied" event if I see in the windows Events Viewer that the 'user was granted access'.

     

    I guess I miss some additionnal attributes on the RADIUS server that the swith is waiting for in order to accept to open the session. Am I right ?

    Trouble : I don't know which atributes to add...

     

    Any idea ?

     

    Alain


    #ssh


  • 2.  RE: RADIUS attributes for SSH login on HP A3100 v2

    Posted Mar 30, 2012 09:18 AM

    Hi,

     

    You should use these attributes:

     

    Huawei-Exec-Privilege = 3,
    Login-Service = 50

     

    Exec-privilege = 3 means administrator access type

    Login-service = 50 means SSH type access

     

    Regards,



Related Content