•
•
•
•
•
•
•
•
•
•
13.1.1 Local authentication configuration algorithm
Step Description Command Keys
1 Set local as authentication method. esr(config)# aaa authentication
login { default | <NAME> }
<METHOD 1>
[ <METHOD 2> ] [ <METHOD 3> ]
[ <METHOD 4> ]
<NAME> – list name, set by the
string of up to 31 characters.
Authentication methods:
local – authentication by
local user base;
tacacs – authentication
by TACACS server list;
radius – authentication
by RADIUS server list;
ldap – authentication by
LDAP server list.
2 Set enable as authentication method of
user privileges elevation.
esr(config)# aaa authentication
enable <NAME><METHOD 1>
[ <METHOD 2> ]
[ <METHOD 3> ] [ <METHOD 4> ]
<NAME> – list name, set by the
string of up to 31 characters.
Authentication methods:
local – authentication by
local user base;
tacacs – authentication
by TACACS server list;
radius – authentication
by RADIUS server list;
ldap – authentication by
LDAP server list.
3 Set the method for iterating over
authentication methods (optional).
esr(config)# aaa authentication
mode <MODE>
<MODE> – options of iterating
over methods:
chain – if the server
returned FAIL, proceed to
the following
authentication method in
the chain;
break – if the server
returned FAIL, abandon
authentication attempts.
If the server is
unavailable, continue
authentication attempts
by the following methods
in the chain.
Default value: chain.