3com 5500-ei pwr Reference Guide
1-7
The Switch 5500-EI adopts hierarchical protection for command lines so as to inhibit users at lower
levels from using higher level commands to configure the switches. For details about configuring a
HWTACACS authentication scheme for low-to-high user level switching, refer to Switching User Level
in the Command Line Interface Operation.
levels from using higher level commands to configure the switches. For details about configuring a
HWTACACS authentication scheme for low-to-high user level switching, refer to Switching User Level
in the Command Line Interface Operation.
Related commands: hwtacacs scheme.
Examples
# Set the HWTACACS scheme to ht for user level switching in the current ISP domain aabbcc.net.
<Sysname> system-view
System View: return to User View with Ctrl+Z.
[Sysname] domain aabbcc.net
New Domain added.
[Sysname-isp-aabbcc.net] authentication super hwtacacs-scheme ht
authorization
Syntax
authorization
{ none | hwtacacs-scheme hwtacacs-scheme-name }
undo authorization
View
ISP domain view
Parameters
none
: Specifies not to use any authorization scheme.
hwtacacs-scheme hwtacacs-scheme-name
: Specifies to use an HWTACACS scheme. Here,
hwtacacs-scheme-name
is the name of an HWTACACS scheme; it is a string of up to 32 characters.
Description
Use the authorization command to configure an authorization scheme for current ISP domain.
Use the undo authorization command to restore the default authorization scheme setting of the ISP
domain.
domain.
By default, no separate authorization scheme is configured for an ISP domain.
Related commands: scheme, radius scheme, hwtacacs scheme.
Examples
# Allow users in ISP domain aabbcc.net to access network services without being authorized.
<Sysname> system-view