Cisco Nexus 5000 Series Configuration Manual page 26

Configuring AAA
• Local database on the Nexus 5000 Series switch
• Username only
The default method is local.
Before you configure default login authentication methods, configure RADIUS or TACACS+ server groups
as needed. To configure default login authentication methods, perform this task:
SUMMARY STEPS
1. switch# configure terminal
2. switch(config)# aaa authentication login default {group group-list [none] | local | none}
3. switch(config)# exit
4. (Optional) switch# show aaa authentication
5. (Optional) switch# copy running-config startup-config
DETAILED STEPS
Command or Action
Step 1 switch# configure terminal
Step 2 switch(config)# aaa authentication login
default {group group-list [none] | local
| none}
Step 3 switch(config)# exit
Step 4 switch# show aaa authentication
Step 5 switch# copy running-config
startup-config
Cisco Nexus 5000 Series NX-OS Security Configuration Guide
14
Configuring Authentication, Authorization, and Accounting
Purpose
Enters configuration mode.
Configures the default authentication methods.
The group-list argument consists of a space-delimited list of group names.
The group names are the following:
• radius —Uses the global pool of RADIUS servers for authentication.
• named-group —Uses a named subset of TACACS+ or RADIUS
servers for authentication.
The local method uses the local database for authentication. The none
method uses the username only.
The default login method is local , which is used when no methods are
configured or when all of the configured methods do not respond.
Exits configuration mode.
(Optional)
Displays the configuration of the default login authentication methods.
(Optional)
Copies the running configuration to the startup configuration.
OL-20919-01