Support User Manuals

D-Link DGS-3600 Switch User Manual

Open as PDF

of 757

xStack

®

DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual

60

config authen_login

hosts in the tacacs+ group are missing, the authentication request will be sent to the first

server host in the tacacs group. If all server hosts in the tacacs group are missing, the local

account database in the device will be used to authenticate the user. When a user logs in to

the device successfully, using either the tacacs/xtacacs/tacacs+/radius built-in, user-defined

server groups methods, or none, only the “user” privilege level will be assigned. If the user

wants to access admin privilege level, the user must use the “enable admin” command to

promote the privilege level. However, when the local method is used, the privilege level will

depend on the account privilege level stored in the local device.

Parameters

default - Specify the default method list of authentication methods.

method_list_name - Specify the user-defined method list of authentication methods.

tacacs - Specify authentication by the built-in server group “tacacs”.

xtacacs - Specify authentication by the built-in server group “xtacacs”.

tacacs+ - Specify authentication by the built-in server group “tacacs+”.

radius - Specify authentication by the built-in server group “radius”.

server_group - Specify authentication by the user-defined server group.

local - Specify authentication by the local user account database in the device.

none - Specify no authentication.

Restrictions Only Administrator level users can issue this command.

Example usage:

To configure a user-defined method list called “login_list_1”, that specifies a sequence of the built-in “tacacs+” server

group, followed by the “tacacs” server group, and finally the local account database for users attempting to log in to the

Switch:

DGS-3627:admin# config authen_login method_list_name login_list_1 method tacacs+ tac

acs local

Command: config authen_login method_list_name login_list_1 method tacacs+ tacac

s local

Success.

DGS-3627:admin#

delete authen_login method_list_name

Purpose This command is used to delete a user-defined method list of authentication methods for

users logging into the Switch.

Syntax

delete authen_login method_list_name <string 15>

Description Deletes a user-defined method list of authentication methods for users attempting to log in to

the Switch.

Parameters

<string 15> - The user-defined method list name.

Restrictions Only Administrator level users can issue this command.

Example usage:

To delete the user-defined method list called “login_list_1” for users attempting to log in to the Switch:

previous next