User Manual User guide
Rockwell Automation Publication 1783-UM006A-EN-P - May 2014 415
Configuring RADIUS and TACACS+ Servers Chapter 14
Use the line password for authentication. You must define a line
password before you can use this authentication method. Use the
password password line configuration command.
• Local
Use the local username database for authentication. You must enter
username information in the database. Use the
username password
global configuration command.
• Radius
Use RADIUS authentication. You must configure the RADIUS server
before you can use this authentication method. For more information,
see Identifying the RADIUS Server Host
on page 410.
aaa authentication login {default | list-name}
method1 [method2...]
4. Enter line configuration mode, and configure the lines that you want
applied to the authentication list.
line [console | tty | vty] line-number [ending-
line-number]
5. Apply the authentication list to a line or set of lines.
• If you specify default, use the default list created with the aaa
authentication login command.
• For list-name, specify the list created with the
aaa
authentication login
command.
login authentication {default | list-name}
6. Configure the access point to send its system name in the NAS_ID
attribute for authentication.
radius-server attribute 32 include-in-access-req
format %h
7. Return to privileged EXEC mode.
end
8. Verify your entries.
show running-config
9. (Optional) Save your entries in the configuration file.
copy running-config startup-config
• To disable AAA, use the no aaa new-model global configuration
command.
• To disable AAA authentication, use the
no aaa authentication
login {default | list-name} method1 [method2...]
global configuration command.
To either disable RADIUS authentication for login or to return to the default
value, use the
no login authentication {default | list-name}
line configuration command.