Configure Login Authentication For Terminal Lines - Dell Force10 MXL Blade Configuration Manual
Configuration guide for the mxl 10/40gbe switch io module
Hide thumbs
Also See for Force10 MXL Blade:
- Reference manual (732 pages) ,
- Deployment manual (89 pages) ,
- Getting started manual (38 pages)
Table of Contents
Advertisement
Figure 4-5. Applying an Access List to a VTY Line
FTOS(conf-std-nacl)#show config
!
ip access-list standard myvtyacl
seq 5 permit host 10.11.0.1
FTOS(conf-std-nacl)#line vty 0
FTOS(conf-line-vty)#show config
line vty 0
access-class myvtyacl
FTOS Behavior: Prior to FTOS version 7.4.2.0, in order to deny access on a VTY line, you must apply
an ACL and AAA authentication to the line. Then users are denied access only after they enter a
username and password. Beginning in FTOS version 7.4.2.0, only an ACL is required, and users are
denied access before they are prompted for a username and password.
Configure Login Authentication for Terminal Lines
You can use any combination of up to six authentication methods to authenticate a user on a terminal line.
A combination of authentication methods is called a "method list". If the user fails the first authentication
method, FTOS prompts the next method until all methods are exhausted, at which point the connection is
terminated. The available authentication methods are:
•
enable
•
—Prompt for the password you assigned to the terminal line. You must configure a password for
line
the terminal line to which you assign a method list that contains the
Configure a password using the
•
—Prompt for the system username and password.
local
•
—Do not authenticate the user.
none
•
radius
•
tacacs+
To configure authentication for a terminal line, follow these steps:
Step
Task
1
Create an authentication method list.
You may use a mnemonic name or
use the keyword
authentication method for terminal
lines is
local
list is empty.
2
Apply the method list from Step 1 to
a terminal line.
64
|
Management
—Prompt for the enable password.
—Prompt for a username and password and use a RADIUS server to authenticate.
—Prompt for a username and password and use a TACACS+ server to authenticate.
default
. The default
, and the
method
default
command from LINE mode.
password
Command Syntax
aaa authentication login {method-list-name
default} [method-1] [method-2] [method-3]
[method-4] [method-5] [method-6]
login authentication {method-list-name
authentication method.
line
Command Mode
|
CONFIGURATION
|
default}
CONFIGURATION
- Quick Links:
- Accessing the Command Line
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
