Authentication sequence, Authentication enable, Table 70: authentication sequence commands – LevelOne GTL-2691 User Manual

C

HAPTER

28

| Authentication Commands

Authentication Sequence

– 866 –

E

XAMPLE

This example shows how the set the access level and password for a user.

Console(config)#username bob access-level 15

Console(config)#username bob password 0 smith

Console(config)#

A

UTHENTICATION

S

EQUENCE

Three authentication methods can be specified to authenticate users

logging into the system for management access. The commands in this

section can be used to define the authentication method and sequence.

authentication

enable

This command defines the authentication method and precedence to use

when changing from Exec command mode to Privileged Exec command

mode with the

enable

command. Use the no form to restore the default.

S

YNTAX

authentication enable {[local] [radius] [tacacs]}
no authentication enable

local - Use local password only.
radius - Use RADIUS server password only.
tacacs - Use TACACS server password.

D

EFAULT

S

ETTING

Local

C

OMMAND

M

ODE

Global Configuration

C

OMMAND

U

SAGE

◆

RADIUS uses UDP while TACACS+ uses TCP. UDP only offers best effort

delivery, while TCP offers a connection-oriented transport. Also, note

that RADIUS encrypts only the password in the access-request packet

from the client to the server, while TACACS+ encrypts the entire body

of the packet.

Table 70: Authentication Sequence Commands

Command

Function

Mode

authentication enable

Defines the authentication method and precedence for

command mode change

GC

authentication login

Defines logon authentication method and precedence GC