D-Link DGS-3000 Reference Manual page 68
Hide thumbs
Also See for DGS-3000:
- Reference manual (731 pages) ,
- Hardware installation manual (74 pages) ,
- Reference manual (334 pages)
Table of Contents
Advertisement
DGS-3000 Series Layer 2 Managed Gigabit Ethernet Switch CLI Reference Guide
DGS-3000-26TC:admin#create authen_login method_list_name login_list_1
Command: create authen_login method_list_name login_list_1
Success.
DGS-3000-26TC:admin#
5-9
config authen_login
Description
This command is used to configure a user-defined or default method list of authentication methods
for user login. The sequence of methods will effect the altercation result. For example, if the
sequence is TACACS+ first, then TACACS and local, when user trys to login, the authentication
request will be sent to the first server host in TACACS+ built-in server group. If the first server host
in TACACS+ group is missing, the authentication request will be sent to the second server host in
TACACS+ group, and so on. If all server hosts in TACACS+ group are missing, the authentication
request will be sent to the first server host in TACACS group. If all server hosts in TACACS group
are missing, the local account database in the device is used to authenticate this user. When user
logins the device successfully while using methods like TACACS/XTACACS/TACACS+/RADIUS
built-in or user-defined server groups or none, the "user" privilege level is assigned only. If user
wants to get admin privilege level, user must use the "enable admin" command to promote his
privilege level. But when local method is used, the privilege level will depend on this account
privilege level stored in the local device.
Format
config authen_login [default | method_list_name <string 15>] method {tacacs | xtacacs |
tacacs+ | radius | server_group <string 15> | local | none}
Parameters
default - The default method list of authentication methods.
method_list_name - The user-defined method list of authentication methods.
<string 15> - Enter the method list name here. This value can be up to 15 characters long.
method - Specify the authentication method used.
tacacs - (Optional) Specify to authenticate by using the built-in server group called
"TACACS".
xtacacs - (Optional) Specify to authenticate by using the built-in server group called
"XTACACS".
tacacs+ - (Optional) Specify to authenticate by using the built-in server group called
"TACACS+".
radius - (Optional) Specify to authenticate by using the built-in server group called "RADIUS".
server_group - (Optional) Specify to authenticate by using the user-defined server group.
<string 15> - Enter the server group value here. This value can be up 15 characters long.
local - (Optional) Specify to authenticate by local user account database in device.
none - (Optional) No authentication.
Restrictions
Only Administrators can issue this command.
64
- Quick Links:
- Chapter 2 Basic Command List
Hide quick links:
Advertisement
Chapters
Table of Contents
