Manualshelf

Specifications

ManualsBrandsCisco ManualsComputer equipment5428 - SN Router
181182183184185186187188189190
12-5
Cisco SN 5428-2 Storage Router Software Configuration Guide
78-15471-01
Chapter 12 Command Line Interface Reference
aaa authentication iscsi
aaa authentication iscsi
To configure authentication, authorization and accounting (AAA) authentication services for iSCSI
authentication of IP hosts requesting access to storage via SCSI routing instances, use the
aaa authentication iscsi command. To disable this authentication, use the no form of this command.
aaa authentication iscsi {listname |default} services1 [services2...]
no aaa authentication iscsi {listname |default}
Syntax Description
Defaults If iSCSI authentication is enabled and the named authentication list is not configured, authentication
fails.
If iSCSI authentication is enabled using the default list but the default list is not configured, only the
local user database is selected. This has the same effect as the following command:
aaa authentication iscsi default local
Command Modes Administrator.
Command History
Usage Guidelines iSCSI authentication uses AAA authentication services to provide authentication of IP hosts that request
access to storage from SCSI routing instances that have authentication enabled.
AAA attempts to use each service in the order listed in the specified iSCSI authentication list, until
authentication succeeds or fails. If the service fails to find a user name match, authentication fails. If
AAA returns an error (because the RADIUS or TACACS+ server is not available, for example), AAA
attempts to use the next service in the list for authentication.
If either local or local-case is the first service on the iSCSI authentication list and AAA fails to find a
user name match, AAA attempts to use the next method on the list for authentication. If the local or
local-case service is in any other position on the list and AAA fails to find a user name match,
authentication fails and access is denied. If a RADIUS or TACACS+ server fails to find a user name
match (regardless of position on the iSCSI authentication list), authentication fails and access is denied.
Use the show aaa command to display the current authentication lists.
listname The name of the authentication list. Enter a maximum of 31 characters.
default The name of the default authentication list.
services1 [services2...] At least one of the services described in Table 12-2.
Release Modification
3.2.1 This command was introduced.