Reference Guide
1290 | Security
www.dell.com | support.dell.com
Methods configured with the aaa authentication login command are evaluated in the order
they are configured. If users encounter an error with the first method listed, FTOS applies the
next method configured. If users fail the first method listed, no other methods are applied.
The only exception is the
local method. If the user’s name is not listed in the local database,
the next method is applied. If the correct user name/password combination are not entered,
the user is not allowed access to the switch.
After configuring the aaa authentication login command, configure the login authentication
command to enable the authentication scheme on terminal lines.
Connections to the SSH server will work with the following login mechanisms: local, radius
and tacacs.
Related
Commands
access-class
c e s
Restrict incoming connections to a particular IP address in a defined IP access control list
(ACL).
Syntax
access-class
access-list-name
To delete a setting, use the
no access-class command.
Parameters
Defaults
Not configured.
Command Modes
LINE
Command
History
Note: If authentication fails using the primary method, FTOS employs the second
method (or third method, if necessary) automatically. For example, if the TACACS+
server is reachable, but the server key is invalid, FTOS proceeds to the next
authentication method. The TACACS+ is incorrect, but the user is still authenticated
by the secondary method.
login authentication Apply an authentication method list to designated terminal lines.
password Create a password.
radius-server host Specify a RADIUS server host.
tacacs-server host Specify a TACACS+ server host.
access-list-name
Enter the name of an established IP Standard ACL.
Version 8.3.7.0 Introduced for S4810
Version 7.6.1.0 Introduced for S-Series
Version 7.5.1.0 Introduced for C-Series
pre-Version 6.2.1.1 Introduced on E-Series