aaa authorization ssh-publickey
To configure Lightweight Directory Access Protocol (LDAP) or local authorization with the Secure Shell
(SSH) public key as the default AAA authorization method for LDAP servers, use the aaa authorization
ssh-publickey command. To revert to the default, use the no form of this command.
aaa authorization ssh-publickey default {group group-list| local}
no aaa authorization ssh-publickey default {group group-list| local}
Syntax Description
Specifies to use a server group for authorization.group
Space-separated list of server groups. The list can
include the following:
•
ldap for all configured LDAP servers.
•
Any configured LDAP server group name.
group-list
Specifies to use the local database for authentication.local
Command Default
Local
Command Modes
Global configuration
Supported User Roles
network-admin
vdc-admin
Command History
ModificationRelease
This command was introduced.5.0(2)
Usage Guidelines
To use this command, you must enable the LDAP feature using the feature ldap command.
The group ldap and group group-list methods refer to a set of previously defined LDAP servers. Use the
ldap-server host command to configure the host servers. Use the aaa group server command to create a
named group of servers. Use the show aaa groups command to display the server groups on the device.
If you specify more than one server group, the Cisco NX-OS software checks each group in the order that
you specify in the list. The local method is used only if all the configured server groups fail to respond and
you have configured local as the fallback method.
Cisco Nexus 7000 Series Security Command Reference
45
A Commands
aaa authorization ssh-publickey
To Next Page
Loading...
