Resetting the login authentication mode – Brocade Network OS NETCONF Operations Guide v4.1.1 User Manual
Page 231
Network OS NETCONF Operations Guide
199
53-1003231-02
Login authentication mode
16
<?xml version="1.0" encoding="UTF-8"?>
<rpc message-id="901" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<get-config>
<source>
<running/>
</source>
<filter type="subtree">
<aaa-config xmlns="urn:brocade.com:mgmt:brocade-aaa">
<aaa>
<authentication/>
</aaa>
</aaa-config>
</filter>
</get-config>
</rpc>
<rpc-reply message-id="901" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<aaa-config xmlns="urn:brocade.com:mgmt:brocade-aaa">
<aaa>
<authentication>
<login>
<first>tacacs+</first>
<second>local</second>
</login>
</authentication>
</aaa>
</aaa-config>
</rpc>
5. Log in to the switch using an account with TACACS+ only credentials to verify that TACACS+ is
being used to authenticate the user.
Resetting the login authentication mode
When you reset the login authentication mode, primary authentication reverts to local mode, which
is the default mode.
1. Issue the <edit-config> RPC to configure the <aaa-config> node in the
urn:brocade.com:mgmt:brocade-aaa workspace.
2. Under the <aaa-config> node, include the <aaa>/<authentication>/<login> hierarchy of node
elements.
3. In the <login> element tag, include the delete operation.
<?xml version="1.0" encoding="UTF-8"?>
<rpc message-id="902" xmlns="urn:ietf:params:xml:ns:netconf:base:1.0">
<edit-config>
<target>
<running/>
</target>
<config>
<aaa-config xmlns="urn:brocade.com:mgmt:brocade-aaa">
<aaa>
<authentication>
<login
xmlns="urn:ietf:params:xml:ns:netconf:base:1.0"
operation="delete"/>
</authentication>