Brocade Virtual ADX Administration Guide (Supporting ADX v03.1.00) User Manual
Page 113
Brocade Virtual ADX Administration Guide
101
53-1003249-01
Configuring authentication-method lists
2
This command configures the device to use the local user accounts to authenticate attempts to
access the Privileged EXEC and CONFIG levels of the CLI.
Example
To configure the device to consult a RADIUS server first to authenticate attempts to access the
Privileged EXEC and CONFIG levels of the CLI, then consult the local user accounts if the RADIUS
server is unavailable, enter the following command.
Virtual ADX(config)#aaa authentication enable default radius local
Syntax: [no] aaa authentication snmp-server | web-server | enable | login default method1
[method2] [method3] [method4] [method5] [method6] [method7]
The snmp-server | web-server | enable | login parameter specifies the type of access this
authentication-method list controls. You can configure one authentication-method list for each type
of access.
NOTE
TACACS or TACACS+ and RADIUS are supported only with the enable and login parameters.
The method1 variable specifies the primary authentication method. The remaining optional
method variables specify additional methods to try if an error occurs with the primary method. A
method can be one of the values listed in the Method column in the following table.
TABLE 14
Authentication method values
Method
Description
line
Authenticate using the password you configured for Telnet access. The
Telnet password is configured using the enable telnet password…
command. Refer to
enable
Authenticate using the password you configured for the Super User
privilege level. This password is configured using the enable
super-user-password… command. Refer to
local
Authenticate using a local user name and password you configured on the
device. Local user names and passwords are configured using the
username… command. Refer to
“Configuring a local user account”
tacacs
Authenticate using the database on a TACACS server. You also must
identify the server to the device using the tacacs-server command.
tacacs+
Authenticate using the database on a TACACS+ server. You also must
identify the server to the device using the tacacs-server command.
radius
Authenticate using the database on a RADIUS server. You also must
identify the server to the device using the radius-server command. Refer to
none
Do not use any authentication method. The device automatically permits
access.