Example 2: Radius, Tacacs+, And Local Authentication For One User - Digi TX54 User Manual

Hide thumbs Also See for TX54:

Table of Contents

User authentication

If admin > level is set to read-only:

(config)> auth group admin acl admin level full

4. Verify that local is one of the configured authentication methods:

(config)> show auth method

If local is not listed:

(config)> add auth method end local

5. Create the user. In this example, the user is being created with the username adminuser:

(config)> add auth user adminuser

(config auth user adminuser)>

6. Assign a password to the user:

(config auth user adminuser)> password pwd

(config auth user adminuser)>

7. Assign the user to the admin group:

(config auth user adminuser)> add group end admin

(config auth user adminuser)>

8. Save the configuration and apply the change:

(config auth user adminuser)> save

Configuration saved.

9. Type exit to exit the Admin CLI.

Depending on your device configuration, you may be presented with an Access selection

menu. Type quit to disconnect from the device.

Example 2: RADIUS, TACACS+, and local authentication for one user

Goal: To create a user with administrator rights who is authenticated by using all three authentication

In this example, when the user attempts to log in to the TX54 device, user authentication will occur in

the following order:

1. The user is authenticated by the RADIUS server. If the RADIUS server is unavailable,

2. The user is authenticated by the TACACS+ server. If both the RADIUS and TACACS+ servers are

unavailable,

3. The user is authenticated by the TX54 device using local authentication.

TX54 User Guide

Example user configuration