Enabling The Password Prompt For User Name; Configuring Share Key Value For Using Radius/Tacacs - Cisco Nexus 3600 NX-OS Security Configuration Manual

Secure Login Enhancements

Enabling the Password Prompt for User Name

Procedure
Step 1
Step 2
Step 3

Configuring Share Key Value for using RADIUS/TACACS+

The shared secret you configure for remote authentication and accounting must be hidden. For the radius-server
key and tacacs-server key commands, a separate command to generate encrypted shared secret can be used.
Procedure
Step 1
Step 2
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
24
Command or Action
configure terminal
Example:
Switch# configure terminal
[no] password prompt username
Example:
Switch(config)# password prompt
username
exit
Example:
Switch(config)# exit
Command or Action
configure terminal
Example:
Switch# configure terminal
generate type7_encrypted_secret
Example:
Switch(config)# generate
type7_encrypted_secret
Purpose
Enters global configuration mode.
Enables the login knob. If this command is enabled
and the user enters the username command without
the password option, then the password is prompted.
The password accepts hidden characters. Use the no
form of this command to disable the login knob.
Exits to privileged EXEC mode.
Purpose
Enters global configuration mode.
Configures RADIUS and TACACS shared secret with
key type 7. While generating an encrypted shared
secret, user input is hidden.
You can generate encrypted equivalent of
Note
plain text separately and can configure the
encrypted shared secret later.
Configuring AAA