Operation Manual – AAA & RADIUS & HWTACACSH3C S3610&S5510 Series Ethernet SwitchesChapter 1 AAA & RADIUS & HWTACACS Configuration1-14Operation Description Related sectionCreate aHWTACACSschemeRequiredSection 1.5.1“Creating aHWTACACSScheme”ConfigureHWTACACSauthenticationserversRequiredSection 1.5.2“ConfiguringHWTACACSAuthenticationServers”ConfigureHWTACACSauthorizationserversRequiredSection 1.5.3“ConfiguringHWTACACSAuthorizationServers”ConfigureHWTACACSaccountingserversOptionalSection 1.5.4“ConfiguringHWTACACSAccounting Servers”Configure sharedkeys for RADIUSpacketsRequiredSection 1.5.5“Configuring SharedKeys for RADIUSPackets”Configure theattributes for datato be sent toTACACS serversOptionalSection 1.5.6“Configuring theAttributes for Data tobe Sent to TACACSServers”HWTACACSconfigurationConfigure thetimers of TACACSserversOptionalSection 1.5.7“Configuring theTimers of TACACSServers”1.3 AAA ConfigurationThe goal of AAA configuration is to protect network devices against unauthorizedaccess and at the same time provide network access services to authorized users. Ifyou need to use ISP domains to implement AAA management on access users, youneed to configure the ISP domains.There are three types of users in AAA: login, command authorization, and lan-access.You can configure authentication/authorization/accounting policies independentlyaccording to the actual requirements of users.