Set authentication – Allied Telesis AT-S63 User Manual

AT-S63 Management Software Command Line Interface User’s Guide

Section IX: Management Security

705

SET AUTHENTICATION

Syntax

set authentication method=tacacs|radius [secret=

string

]

[timeout=

value

]

Parameters

method

Specifies which authenticator protocol, TACACS+ or
RADIUS, is to be the active protocol on the switch.

secret

Specifies the global encryption key of the TACACS+
or RADIUS servers. If the servers use different
encryption keys, you can leave this parameter blank
and set individual encryption keys with “ADD
TACACSSERVER” on page 698 or “ADD
RADIUSSERVER” on page 696. To remove a
previously assigned global key without specifying a
new value, enter the string as “none”. The maximum
length is 39 characters.

timeout

Specifies the maximum amount of time the switch
waits for a response from an authentication server
before the switch assumes the server will not
respond. If the timeout expires and the server has not
responded, the switch queries the next server in the
list. After the switch has exhausted the list of servers,
the switch defaults to the standard Manager and
Operator accounts. The default is 30 seconds. The
range is 1 to 300 seconds.

Description

This command selects the authentication protocol. One authentication
protocol can be active on the switch at a time. You may specify a global
encryption code and the maximum number of seconds the switch waits for
a response from an authenticator server.

Examples

The following command selects TACACS+ as the authentication protocol
on the switch:

set authentication method=tacacs

The following command selects TACACS+ as the authentication protocol
and specifies a global encryption key of tiger54:

set authentication method=tacacs secret=tiger54