Dell PowerEdge FX2/FX2s User Manual

Enabling AAA Authentication

To enable AAA authentication, use the following command.

• Enable AAA authentication.

CONFIGURATION mode

aaa authentication enable {method-list-name | default} method1 [... method4]

– default: uses the listed authentication methods that follow this argument as the default list of

methods when a user logs in.

– method-list-name: character string used to name the list of enable authentication methods

activated when a user logs in.

– method1 [... method4]: any of the following: RADIUS, TACACS, enable, line, none.

If you do not set the default list, only the local enable is checked. This setting has the same effect as
issuing an aaa authentication enable default enable command.

Enabling AAA Authentication — RADIUS

To enable authentication from the RADIUS server, and use TACACS as a backup, use the following

commands.

1.

Enable RADIUS and set up TACACS as backup.
CONFIGURATION mode

aaa authentication enable default radius tacacs

2. Establish a host address and password.

CONFIGURATION mode

radius-server host x.x.x.x key some-password

3. Establish a host address and password.

CONFIGURATION mode

tacacs-server host x.x.x.x key some-password

To get enable authentication from the RADIUS server and use TACACS as a backup, issue the
following commands.
Example of Enabling Authentication from the RADIUS Server

Dell(config)# aaa authentication enable default radius tacacs

Radius and TACACS server has to be properly setup for this.

Dell(config)# radius-server host x.x.x.x key <some-password>

Dell(config)# tacacs-server host x.x.x.x key <some-password>

To use local authentication for enable secret on the console, while using remote authentication on
VTY lines, issue the following commands.

162

Security