Filter
Top Products
166
config authen_login
Purpose Used to configure a user-defined or default
method list
of
authentication methods for user login.
Syntax
config authen_login [default | method_list_name <string 15>]
method {tacacs | xtacacs | tacacs+ | server_group <string 15> |
local | none}
Description This command will configure a user-defined or default
method list
of
authentication methods for users logging on to the switch. The
sequence of methods implemented in this command will affect the
authentication result. For example, if a user enters a sequence of
methods like
tacacs – xtacacs – local,
the switch will send an
authentication request to the first
tacacs
host in the server group. If
no response comes from the server host, the switch will send an
authentication request to the second
tacacs
host in the server
group and so on, until the list is exhausted. At that point, the switch
will restart the same sequence with the following protocol listed,
xtacacs
. If no authentication takes place using the
xtacacs
list, the
local
account database set in the switch is used to authenticate the
user. When the local method is used, the priviledge level will be
dependant on the local account priveledge configured on the
switch.
Successful login using any of these methods will give the user a
“user” priviledge only. If the user wishes to upgrade his or her
status to the administrator level, the user must implement the
enable admin
command, followed by a previously configured
password. (
See the
enable admin
part of this section for more
detailed information, concerning the enable admin command.)
Parameters default – The default method list for access authentication, as
defined by the user. The user may choose one or a combination of
up to four (4) of the following authentication methods:
tacacs – Adding this parameter will require the user to be
authenticated using the
tacacs
protocol from the remote
tacacs
server hosts
of the tacacs
server group
list.
xtacacs – Adding this parameter will require the user to be
authenticated using the x
tacacs
protocol from the remote
xtacacs
server hosts
of the xtacacs
server group
list.
tacacs+ – Adding this parameter will require the user to be
authenticated using the
tacacs
protocol from the remote
tacacs+
server hosts
of the tacacs+
server group
list.
server_group <string 15> - Adding this parameter will
require the user to be authenticated using a user-defined
server group previously configured on the switch.
local - Adding this parameter will require the user to be
authenticated using the local
user account
database on
the switch.
none – Adding this parameter will require no
authentication to access the switch.
method_list_name – Enter a previously implemented method list