Configuring AAA Services on Cisco IOS XR Software
How to Configure AAA Services
SC-41
Cisco IOS XR System Security Configuration Guide for the Cisco CRS-1 Router
OL-20382-01
3. end
or
commit
4. Repeat Step 1 through Step 3 for every authentication method list to be configured.
DETAILED STEPS
Command or Action Purpose
Step 1
configure
Example:
RP/0/RP0/CPU0:router# configure
Enters global configuration mode.
Step 2
aaa authentication {login | ppp} {default |
list-name | remote} method-list
Example:
RP/0/RP0/CPU0:router(config)# aaa
authentication login default group tacacs+
Creates a series of authentication methods, or a method list.
• Using the login keyword sets authentication for login.
Using the ppp keyword sets authentication for
Point-to-Point Protocol.
• Entering the default keyword causes the listed
authentication methods that follow this keyword to be
the default list of methods for authentication.
• Entering a list-name character string identifies the
authentication method list.
• Entering the remote keyword causes the listed
authentication methods that follow this keyword to be
the default list of methods for administrative
authentication on a remote non-owner SDR.
Note The remote keyword is available only on the admin
plane.
• Entering a method-list argument following the method
list type. Method list types are entered in the preferred
sequence. The listed method types are any one of the
following options:
–
group tacacs+—Use a server group or TACACS+
servers for authentication
–
group radius—Use a server group or RADIUS
servers for authentication
–
group named-group—Use a named subset of
TACACS+ or RADIUS servers for authentication
–
local—Use a local username or password database
for authentication
–
line—Use line password or user group for
authentication
• The example specifies the default method list to be
used for authentication.
To Next Page
Loading...
Need help?
General
