Aaa authentication login default, Aaa authorization map default-user, Aaa authorization map order – HP StorageWorks Enterprise File Services WAN Accelerator User Manual
Page 193
HP EFS WAN A
CCELERATOR
M
ANAGER
U
SER
’
S
G
UIDE
193
A - HP
EFS W
A
N
A
C
C
EL
ER
ATO
R
M
ANA
GER
“tacacs-server key” on page 198
“tacacs-server retransmit” on page 198
“tacacs-server timeout” on page 198
aaa authentication login default
Description
Configures RADIUS or TACACS+ login settings. The order in which the methods are
specified is the order in which the authentication is attempted. The no aaa command
option clears all authentication states and returns user authentication to the local user
name database.
Syntax
aaa authentication login default <method>
Parameters
Example
minna (config) # aaa authentication login default radius tacacs+
minna (config) #
aaa authorization map default-user
Description
Sets the local user default mapping for RADIUS or TACACS+ server authentication.
When a user is authenticated (through RADIUS or TACACS+) and does not have a
local account, this command specifies what local account the authenticated user will
be logged in as. If the user name is local, this mapping is ignored. This mapping
depends on the setting of the aaa authorization map order command. The no
command option disables user default mapping.
Syntax
aaa authorization map default-user <user_name>
Parameters
Example
minna (config) # aaa authorization map default-user admin
minna (config) #
aaa authorization map order
Description
Sets the order for remote to local user mappings for RADIUS or TACACS+ server
authentication. The no command option disables authentication.
Syntax
aaa authentication map order <policy>
<method>
Specifies the authentication method: radius, tacacs+, or local. Use a space
separated list.
<user_name>
Specifies the user name for RADIUS or TACACS+ authentication: admin
or monitor.