C613-50631-01 Rev A Command Reference for IE340 Series 2365
AlliedWare Plus™ Operating System - Version 5.5.3-0.x
AAA COMMANDS
AAA
AUTHENTICATION LOGIN
aaa authentication login
Overview Use this command to create an ordered list of methods for authenticating user
logins. It can also be used to replace an existing method list with a list of the same
name. Specify one or more of the options local or group, in the order you want
them to be applied. If the default method list name is specified, it is applied to
every console and VTY line immediately unless another method list is applied to
that line by the login authentication command. To apply a non-default method list,
you must also use the login authentication command.
TACACS+ is not available in Secure Mode (see the crypto secure-mode command).
Use the no variant of this command to remove a method list from user login
authentication. The specified method list name is deleted from the configuration.
If the method list name has been applied to any console or VTY line, user login
authentication on that line will fail.
Note that the no aaa authentication login default command does not remove
the default method list. This will return the default method list to its default state
(local is the default).
Syntax
aaa authentication login {default|<list-name>} {[local] [group
{radius|ldap|tacacs+|<group-name>}]}
no aaa authentication login {default|<list-name>}
Default If the default server is not configured using this command, user login
authentication uses the local user database only.
If the default method list name is specified, it is applied to every console and VTY
line immediately unless a named method list server is applied to that line by the
login authentication command.
Parameter Description
default Set the default authentication server for user login.
<list-name> Name of authentication server.
local Use the local username database.
group Use server group.
radius Use all RADIUS servers configured by the radius-server
host command.
ldap Use all LDAP servers configured by the ldap-server
command.
tacacs+ Use all TACACS+ servers configured by the tacacs-server
host command.
<group-name> Use the specified RADIUS or LDAP server group.
To Next Page
Loading...
Need help?
General
