Juniper JUNOSE SOFTWARE 11.2.X - BROADBAND ACCESS CONFIGURATION GUIDE 7-20-2010 Configuration Manual page 65

aaa authentication default
aaa duplicate-address-check
Copyright © 2010, Juniper Networks, Inc.
host1(config-vr-group)#
Use the no version to delete the accounting virtual router group.
See aaa accounting vr-group
Use to specify the authentication method used for a particular type of subscriber.
Specify one of the following types of subscribers:
atm1483
tunnel
ppp
radius-relay
ipsec
ip (IP subscriber management interfaces)
NOTE: IP subscriber management interfaces are static or dynamic interfaces that are
created or managed by the JunosE Software's subscriber management feature.
Specify one of the following types of accounting methods:
radius—RADIUS authentication for the specified subscribers.
none—Grants the specified subscribers access without authentication.
radius none—Multiple types of authentication; used in the order specified. For
example, radius none specifies that RADIUS authentication is initially used; however,
if RADIUS servers are not available, users are granted access without authentication.
Example
host1(config)#aaa authentication ip default radius
Use the no version to set the authentication protocol to the default, radius.
See aaa authentication default
Use to enable or disable routing table address lookup or duplicate address check.
By default, this command is enabled.
The router checks the routing table for returned addresses for PPP users. If the address
existed, then the user was denied access.
You can disable this routing table address lookup or duplicate address check with the
aaa duplicate-address-check command.
Chapter 1: Configuring Remote Access
27