Chapter 35 AAA Commands
AAA stands for authentication, authorization and accounting. This feature is used to
authenticate users trying to log in to the switch or trying to access the administrative level
privilege.
Applicable Access Application
The authentication can be applied on the following access applications: Console, Telnet, SSH
and HTTP.
Authentication Method List
A method list describes the authentication methods and their sequence to authenticate a user.
The switch supports Login List for users to gain access to the switch, and Enable List for
normal users to gain administrative privileges.
RADIUS/TACACS+ Server
User can configure the RADIUS/TACACS+ servers for the connection between the switch and
the server.
Server Group
User can define the authentication server group with up to several servers running the same
secure protocols, either RADIUS or TACACS+. Users can set these servers in a preferable
order, which is called the server group list. When a user tries to access the switch, the switch
will ask the first server in the server group list for authentication. If no response is received, the
second server will be queried, and so on.
35.1 aaa enable
Description
The aaa enable command is used to enable the AAA function globally. To
disable the AAA function globally, please use the no aaa enable command.
The global AAA function is disabled by default.
Syntax
aaa enable
no aaa enable
Command Mode
Global Configuration Mode
Privilege Requirement
Only Admin level users have access to these commands.
322
To Next Page
Loading...
