Administrator Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch S3048-ON

1291

Version Description

7.5.1.0 Introduced on the C-Series.

6.2.1.0 Introduced on the E-Series.

Usage Information

By default, the Enable password is used. If you configure aaa authentication enable default, Dell

EMC Networking OS uses the methods defined for Enable access instead.

Methods configured with the aaa authentication enable command are evaluated in the order they are

configured. If authentication fails using the primary method, Dell EMC Networking OS employs the second

method (or third method, if necessary) automatically. The fallback to the second method would happen only if the

authentication failure is due to a non-reachable server or invalid TACACS server key. The fallback would not occur

if the authentication failure is due to invalid credentials. For example, if the TACACS+ server is reachable, but the

server key is invalid, Dell EMC Networking OS proceeds to the next authentication method.

Commands

• enable password — changes the password for the enable command.

• login authentication — enables AAA login authentication on the terminal lines.

• password — creates a password.

• radius-server host — specifies a RADIUS server host.

• tacacs-server host — specifies a TACACS+ server host.

aaa authentication login

Configure AAA Authentication method lists for user access to EXEC mode (Enable log-in).

Syntax

aaa authentication login {method-list-name | default} method [... method4]

To return to the default setting, use the no aaa authentication login {method-list-name |

default} command.

Parameters

method-list-name

Enter a text string (up to 16 characters long) as the name of a user-configured method

list that can be applied to different lines.

default Enter the keyword default to specify that the method list specified is the default

method for all terminal lines.

method

Enter one of the following methods:

• enable: use the password the enable password command defines in

CONFIGURATION mode. Not available if role-only is in use.

• line: use the password the password command defines in LINE mode. Not

available if role-only is in use.

•

local: use the password for the userid contained in the local password database.

• none: no authentication. Not available if role-only is in use.

• radius: use the RADIUS servers configured with the radius-server host

command.

• tacacs+: use the TACACS+ servers configured with the tacacs-server host

command.

... method4

(OPTIONAL) Enter up to four additional methods. In the event of a “no response” from

the first method, the system applies the next configured method (up to four configured

methods).

Defaults Not configured (that is, no authentication is performed).

Command Modes CONFIGURATION

Command History

This guide is platform-specific. For command information about other platforms, see the relevant Dell EMC

Networking OS Command Line Reference Guide.

1300 Security