Reference Guide
Command
History
Version 9.0(1.3) Introduced on the S5000.
Usage
Information
By default, the locally configured username password is used. If you configure aaa
authentication login default, Dell Networking OS uses the methods
defined by this command for login instead.
Methods configured with the aaa authentication login command are
evaluated in the order they are configured. If users encounter an error with the first
method listed, Dell Networking OS applies the next method configured. If users fail
the first method listed, no other methods are applied. The only exception is the
local method. If the user’s name is not listed in the local database, the next method
is applied. If the correct user name/password combination are not entered, the
user is not allowed access to the switch.
NOTE: If authentication fails using the primary method, Dell Networking OS
employs the second method (or third method, if necessary) automatically. For
example, if the TACACS+ server is reachable, but the server key is invalid, Dell
Networking OS proceeds to the next authentication method. The TACACS+ is
incorrect, but the user is still authenticated by the secondary method.
After configuring the aaa authentication login command, configure the
login authentication command to enable the authentication scheme on
terminal lines.
Connections to the SSH server work with the following login mechanisms: local,
radius, and tacacs.
Related
Commands
login authentication – enables AAA login authentication on the terminal lines.
password – creates a password.
radius-server host – specifies a RADIUS server host.
tacacs-server host – specifies a TACACS+ server host.
access-class
Restrict incoming connections to a particular IP address in a defined IP access control list (ACL).
S5000
Syntax
access-class access-list-name
To delete a setting, use the no access-class command.
Parameters
access-list-
name
Enter the name of an established IP Standard ACL.
Defaults Not configured.
Security
1203