D-Link DES-7200 Refrigerator User Manual


  Open as PDF
of 1968
 
DES-7200 Configuration Guide Chapter 1 AAA Configuration
1-34
1.9.2.6 Showing the domain
configuration
Use the following commands to show the domain-name-based AAA service information.
Command Function
show aaa domain [domain-name]
Show the current domain-name-based AAA service
information
1.9.3 Domain-name-based
AAA Service Configuration
Notes
The followings are the domain-name-based AAA service configuration notes:
1. With the domain-name-based AAA service enabled, use the method list in the domain.
Without the service enabled, use the method list selected according to the access
protocol(such as 802.1x, ect) for the AAA service. For example, without the service enabled,
use the dot1x authentication authen-list-name, dot1x accounting acct-list-name
authen-list-name and dot1x accounting acct-list-name acct-list-name command to provide
the AAA service for the authentication and accouting method list name.
2. With the domain-name-based AAA service enabled, by default, there is no default domain,
and you shall manually set the default domain-name as “default”. After the configuration, user
that not carries with the domain information provides the AAA service using the default domain.
Without the default domain configured, the user that not carries with the domain information
fails to use the AAA service.
3. If the domain information is carried by the auth-user but the domain is not configured on the
device, it fails to provide the AAA service for the user.
4. The AAA service method list selected by the domain must be consistent with the one
defined by the AAA service. Or it fails to provide the AAA service for the users in the domain.
5. The domain name carried by the user shall be accurately matched with the one configured
on the device. For example, the domain.com and the domain.com.cn have been configured on
the device, and the request message carried by the user is aaa@domain.com, the device
determines that the user belongs to the domain.com but not the domain.com.cn.
1.9.4 Domain-name-based
AAA Service Configuration
Example
The following is an example of configuring the domain-name-based AAA service:
DES-7200(config)# aaa new-model
 previous next