Nortel 2350 用户指南
78 Configuring Web-based AAA for administrative and local access
NN47250-500 (320657-F Version 02.01)
To configure accounting for administrative logins over the network at EXAMPLE, enter the following command:
set accounting admin EXAMPLE\* start-stop | stop-only aaa-method
You can select either start-stop or stop-only accounting modes. The stop-only mode sends only stop records, whereas
start-stop sends both start and stop records, effectively doubling the number of accounting records. In most cases,
stop-only is entirely adequate for administrative accounting, because a stop record contains all the information you
might need about a session.
start-stop sends both start and stop records, effectively doubling the number of accounting records. In most cases,
stop-only is entirely adequate for administrative accounting, because a stop record contains all the information you
might need about a session.
In the set accounting command, you must include Web-based AAA methods that specify whether to use the local
database or RADIUS server to receive the accounting records. Specify local, which causes the processing to be done on
the WSS, or specify a RADIUS server group. For information about configuring a RADIUS server group, see
database or RADIUS server to receive the accounting records. Specify local, which causes the processing to be done on
the WSS, or specify a RADIUS server group. For information about configuring a RADIUS server group, see
For example, you can set accounting for administrative users using the start-stop mode via the local database:
WSS# set accounting admin EXAMPLE\* start-stop local
success: change accepted.
success: change accepted.
The accounting records show the date and time of activity, the user’s status and name, and other attributes. The show
accounting statistics command displays accounting records for administrative users after they have logged in to the
WSS.
accounting statistics command displays accounting records for administrative users after they have logged in to the
WSS.
(For information about network user accounting, see
.
For information and an output example for the show accounting statistics command, see the
Nortel WLAN Security
Switch 2300 Series Command Line Reference
.)
Displaying the Web-based AAA configuration
To display your Web-based AAA configuration, type the following command:
WSS
# show aaa
Default Values
authport=1812 acctport=1813 timeout=5 acct-timeout=5
retrans=3 deadtime=0 key=(null) author-pass=(null)
authport=1812 acctport=1813 timeout=5 acct-timeout=5
retrans=3 deadtime=0 key=(null) author-pass=(null)
Radius Servers
Server Addr Ports T/o Tries Dead State
-------------------------------------------------------------------
r1 192.168.253.1 1812 1813 5 3 0 UP
Server Addr Ports T/o Tries Dead State
-------------------------------------------------------------------
r1 192.168.253.1 1812 1813 5 3 0 UP
Server groups
sg1: r1
Web Portal:
enabled
enabled
set authentication console * local
set authentication admin * local
set accounting admin Geetha stop-only local
set accounting admin * start-stop local
set authentication admin * local
set accounting admin Geetha stop-only local
set accounting admin * start-stop local