Support User Manuals

Cisco Systems OL-6244-01 Switch User Manual

Open as PDF

of 1438

2-256

Catalyst 6500 Series Switch Command Reference—Release 8.4

OL-6244-01

Chapter 2 Catalyst 6500 Series Switch and ROM Monitor Commands

set authentication login

Usage Guidelines This command allows you to choose the authentication method for the web interface. If you configure

the authentication method for the HTTP session as RADIUS, then the username or password is validated

using the RADIUS protocol, and TACACS+ and Kerberos authentication is set to disable for the HTTP

sessions. By default, the HTTP login is validated using the local login password.

You can specify the authentication method for console, telnet, http, or all by entering the console,

telnet, http, or all keywords. If you do not specify console, telnet, http, or all, the authentication

method default is for all sessions.

Examples This example shows how to disable TACACS+ authentication access for Telnet sessions:

Console> (enable) set authentication login tacacs disable telnet

tacacs login authentication set to disable for the telnet sessions.

Console> (enable)

This example shows how to disable RADIUS authentication access for console sessions:

Console> (enable) set authentication login radius disable console

radius login authentication set to disable for the console sessions.

Console> (enable)

This example shows how to disable Kerberos authentication access for Telnet sessions:

Console> (enable) set authentication login kerberos disable telnet

kerberos login authentication set to disable for the telnet sessions.

Console> (enable)

This example shows how to set TACACS+ authentication access as the primary method for HTTP

sessions:

Console> (enable) set authentication login tacacs enable http primary

tacacs login authentication set to enable for HTTP sessions as primary authentification

method.

Console> (enable)

This example shows how to limit login attempts:

Console> (enable) set authentication login attempt 5

Login authentication attempts for console and telnet logins set to 5.

Console> (enable)

This example shows how to set the lockout time for both console and Telnet connections:

Console> (enable) set authentication login lockout 50

Login lockout time for console and telnet logins set to 50.

Console> (enable)

Related Commands set authentication enable

show authentication

previous next