Configure Aaa Authentication Login Methods - Dell Force10 MXL Blade Configuration Manual

Configure AAA Authentication Login Methods

To configure an authentication method and method list, use these commands in the following sequence in
CONFIGURATION mode:
Step Command Syntax
1 aaa authentication login
{method-list-name | default} method1
[...method4]
2 line {aux 0 | console 0
[... end-number]}
3
login authentication {method-list-name |
default}
FTOS Behavior: If you use a method list on the console port in which RADIUS or TACACS+ is the last
authentication method, and the server is not reachable, FTOS allows access even though the
username and password credentials cannot be verified. Only the console port behaves this way, and
does so to ensure that users are not locked out of the system in the event that network-wide issue
prevents access to these servers.
To view the configuration, use the
in EXEC Privilege mode.
Note: Dell Force10 recommends that you use the
does not authenticate users. The
You can create multiple method lists and assign them to different terminal lines.
Command Mode
CONFIGURATION
| vty number CONFIGURATION
LINE
show config
and
none enable
Purpose
Define an authentication method-list
(
method-list-name
The
default
terminal lines.
Possible methods are:
• enable
enable secret
command in CONFIGURATION mode.
• line
password command in LINE mode.
• local
database defined in the local
configuration.
•
none
• radius
configured with the
command.
• tacacs+
configured with the
command
Enter LINE mode.
Assign a
to the terminal line.
command in LINE mode or the
method only as a backup. This method
none
methods do not work with secure shell (SSH).
) or specify the
method-list is applied to all
—use the password defined by the
or
enable password
—use the password defined by the
—use the username/password
—no authentication.
—use the RADIUS server(s)
radius-server host
—use the TACACS+ server(s)
tacacs-server host
or the
method-list-name
show running-config
.
default
list
default
command
Security | 477