/
S2626-PWR (180W) 用户做的是SSH结合radius做AAA认证, SSH登陆到交换机上,输入sys回车报错,使用的是tandy这个用户登陆测试的,同样网络里面S5120交换机上,配置后是没有报错信息的。
提示如下:
<PY_A4_3F_26_01>sys
^
% Unrecognized command found at '^' position.
看了一下应该是ssh登录后,还没敲super之前,权限不够:
<PY_A4_3F_26_01>?
User view commands:
cluster Run cluster command
display Display current system information
ping Ping function
quit Exit from current command view
ssh2 Establish a secure shell client connection
super Set the current user priority level
telnet Establish one TELNET connection
tracert Trace route function
<PY_A4_3F_26_01>
而同样的服务器配置,客户反馈5120等其他设备都是有权限敲system-view命令的:
<PY_A4_3F_51_01>?
User view commands:
archive Specify archive settings
backup Backup next startup-configuration file to TFTP server
boot-loader Set boot loader
bootrom Update/read/backup/restore bootrom
brand Set Original Equipment Manufacturer (BRAND) information
cd Change current directory
cfd Connectivity fault detection (IEEE 802.1ag)
clock Specify the system clock
cluster Run cluster command
copy Copy from one file to another
crypto-digest Compute the hash digest for a specified file
debugging Enable system debugging functions
delete Delete a file
dir List files on a file system
display Display current system information
fixdisk Recover lost chains in storage device
format Format the device
free Clear user terminal interface
ftp Open FTP connection
ipc Interprocess communication
lock Lock current user terminal interface
mkdir Create a new directory
more Display the contents of a file
move Move the file
ntdp Run NTDP commands
oam OAM protocol
packet Packet commands
ping Ping function
pwd Display current working directory
quit Exit from current command view
reboot Reboot system/board/card
rename Rename a file or directory
reset Reset operation
restore Restore next startup-configuration file from TFTP server
rmdir Remove an existing directory
save Save current configuration
schedule Schedule system task
scp Secure copy
screen-length Specify the lines displayed on one screen
send Send information to other user terminal interface
sftp Establish one SFTP connection
ssh2 Establish a secure shell client connection
stack Switch stack system
startup Specify system startup pa rameters
super Set the current user priority level
system-view Enter the System View
telnet Establish one TELNET connection
terminal Set the terminal line characteristics
tftp Open TFTP connection
tracert Trace route function
undelete Recover a deleted file
undo Cancel current setting
xmodem Establish an xmodem connection
<PY_A4_3F_51_01>
经确认,S2626需要配置server-type extended这个命令才能和与imc的radius属性对接。
#
radius scheme pt_aaa
server-type extended
primary authentication 172.16.232.201
primary accounting 172.16.232.201
key authentication cipher $c$3$K2Fy+MKcLw/jNlEHrL7b1lf5UNocbflURPxyLyY=
key accounting cipher $c$3$I0MhO/Q92gucCdxwOpxNUGoBQudzP6bEmOimboM=
user-name-format without-domain
#
S2626缺省支持的radius 服务器类型为standard,部分radius服务器是extend类型的,则需要对应改过去。
✖
案例意见反馈
亲~登录后才可以操作哦!
确定你的邮箱还未认证,请认证邮箱或绑定手机后进行当前操作