Configure Aaa Authentication Login Methods - Dell Force10 C150 Configuration Manual

Configure AAA Authentication login methods

To configure an authentication method and method list, use these commands in the following sequence in
the CONFIGURATION mode:
Step Command Syntax
aaa authentication login
1
{
method-list-nam
method4
line aux 0
2 {
[... end-number
login authentication
3
default
}
FTOS Behavior: If you use a method list on the console port in which RADIUS or TACACS is the last
authentication method, and the server is not reachable, FTOS allows access even though the
username and password credentials cannot be verified. Only the console port behaves this way, and
does so to ensure that users are not locked out of the system in the event that network-wide issue
prevents access to these servers.
To view the configuration, use the
the EXEC Privilege mode.
Note: Dell Force10 recommends that you use the
does not authenticate users. The
You can create multiple method lists and assign them to different terminal lines.
918 | Security
default
e | }
method1
]
console 0 vty number
| |
]}
{ method-list-name
none
Command Mode
CONFIGURATION
[...
CONFIGURATION
| LINE
show config
command in the LINE mode or the
method only as a backup. This method
none
and enable methods do not work with SSH.
Purpose
Define an authentication method-list
( ) or specify the
method-list-name
default
The method-list is applied to all
terminal lines.
Possible methods are:
enable
• —use the password defined by the
enable secret enable password
or
command in the CONFIGURATION
mode.
line
• —use the password defined by the
password command in the LINE mode.
local
• —use the username/password
database defined in the local
configuration.
none
• —no authentication.
radius
• —use the RADIUS server(s)
configured with the radius-server host
command.
tacacs+
• —use the TACACS+ server(s)
configured with the tacacs-server host
command
Enter the LINE mode.
Assign a method-list-name
to the terminal line.
show running-config
default
.
default
or the list
in