Rockwell Automation 1783-WAPxxx Stratix 5100 Wireless Access Point User Manual User Manual

436

Rockwell Automation Publication 1783-UM006A-EN-P - May 2014

Chapter 14

Configuring RADIUS and TACACS+ Servers

Beginning in privileged EXEC mode, follow these steps to configure login
authentication:

1. Enter global configuration mode.

configure terminal

2. Enable AAA.

aaa new-model

3. Create a login authentication method list.

• To create a default list that is used when a named list is not specified in

the

login authentication

command, use the

default

keyword followed by the methods that are to be used in default
situations. The default method list is automatically applied to all
interfaces.

• For

list-name

, specify

a character string to name the list you are

creating.

• For

method1

..., specify the actual method the authentication

algorithm tries. The additional methods of authentication are used only
if the previous method returns an error, not if it fails.

Choose one of these methods:

•

line

Use the line password for authentication. You must define a line
password before you can use this authentication method. Use the

password password

line configuration command.

•

local

Use the local username database for authentication. You must enter
username information into the database. Use the

username

password

global configuration command.

•

tacacs+

Uses TACACS+ authentication. You must configure the TACACS+
server before you can use this authentication method.

aaa authentication login {default | list-name}

method1 [method2...]

4. Enter line configuration mode, and configure the lines that you want to

apply the authentication list.

5. Enter line configuration mode.
6. Configure the lines.
7. Apply the authentication list.

line [console | tty | vty] line-number [ending-

line-number]

8. Apply the authentication list to a line or set of lines.

• If you specify

default

, use the default list created with the

aaa

authentication login

command.