aaa authentication login console
To configure AAA authentication methods for console logins, use the aaa authentication login console
command. To revert to the default, use the no form of this command.
aaa authentication login console {fallback error local| group group-list [none]| local| none}
no aaa authentication login console {fallback error local| group group-list [none]| local| none}
Syntax Description
Enables fallback to local authentication for the
console login if remote authentication is configured
and all AAA servers are unreachable. Fallback to
local authentication is enabled by default.
Disabling fallback to local authentication
can lock your Cisco NX-OS device, forcing
you to perform a password recovery in order
to gain access. To prevent being locked out
of the device, we recommend disabling
fallback to local authentication for only the
default login or the console login, not both.
Note
fallback error local
Specifies to use a server group for authentication.group
Space-separated list of server groups. The list can
include the following:
•
radius for all configured RADIUS servers.
•
tacacs+ for all configured TACACS+ servers.
•
ldap for all configured LDAP servers.
•
Any configured RADIUS, TACACS+, or LDAP
server group name.
group-list
(Optional) Specifies that no authentication is to be
used.
none
Specifies to use the local database for authentication.local
Command Default
local
Command Modes
Global configuration
Cisco Nexus 7000 Series Security Command Reference
27
A Commands
aaa authentication login console
To Next Page
Loading...
