[R2]aaa AAA
1/进入到AAA视图
[R2-aaa]authentication-scheme hcia1 l/认证模板名字叫HCIA1
[R2-aaa-authen-hcia1]authentication-mode local 本地用户认证
[R2-aaa-authen-hcia1]quit
[R2-aaa]authorization-scheme hcia21 /授权模板叫HCIA2
[R2-aaa-author-hcia2]authorization-mode local
[R2-aaa-author-hcia2]quit
[R2-aaa]domain hcia1 :创建域名
Info: Success to create a new domain.
[R2-aaa-domain-hcia1]authorization-scheme hcia1 :认证模板
[R2-aaa-domain-hcia1]authentication-scheme hcia2:授权模板
[R2-aaa]local-user twl@域名 password cipher 123 : 创建本地用户已经密码
[R2-aaa]local-user twl service-type telnet : 创建用户的服务类型
[R2-aaa]local-user twl privilege level 3 : 设置优先级
[R2]user-interface vty 0 4
[R2-ui-vty0-4]authentication-mode aaa :调用aaa认证
二、给设置配置P地址-R2(AAA))
AAA(R1是用户---采访问R2-telnet
1、设置认证模板
1.1 本地认证
2、设置授权模板
2.1本地认证
[R2]aaa//进入到AAA视图
[R2-aaa]authentication-scheme hcia1 //认证模板名字叫HCIA1
[R2-aaa-authen-hcia1]authentication-mode local //本地址认证
[R2-aaa-authen-hcia1]quit
[R2-aaa]authorization-scheme hcia2 //授权模板叫HCIA2
[R2-aaa-author-hcia2]authorization-mode local //本地授权
[R2-aaa-author-hcia2]quit
户口本一样:我要结婚---我爸才有我
3、创建域调用模板(widows---所有的用户属于哪一个域)
[R2]aaa
[R2-aaa]domain hcia //域的名字叫HCIA
[R2-aaa-domain-hcia]authentication-scheme hcia1
[R2-aaa-domain-hcia]authorization-scheme hcia2
[R2-aaa-domain-hcia]quit
4、创建用户和密码
用于telnet给他授权3
5、telnet 调用AAA