Default configuration, Command mode, User guidelines – Dell POWEREDGE M1000E User Manual

222

AAA Commands

•

list-name

— Character string used to name the list of authentication

methods activated when a user logs in. (Range: 1-15 characters)

•

method1

[

method2

...] — Specify at least one from the following table:

Default Configuration

The default login lists are defaultList and networkList. defaultList is used by

the console and only contains the method none. networkList is used by telnet

and SSH and only contains the method local.

Command Mode

Global Configuration mode

User Guidelines

The default and optional list names created with the aaa authentication

login command are used with the login authentication command. Create a

list by entering the aaa authentication login

list-name method

command for

a particular protocol, where

list-name

is any character string used to name

this list. The

method

argument identifies the list of methods that the

authentication algorithm tries, in the given sequence.
The additional methods of authentication are used only if the previous

method returns an error, not if there is an authentication failure. Only the

RADIUS or TACACS+ methods can return an error. To ensure that the

authentication succeeds even if all methods return an error, specify none as

the final method in the command line. For example, if none is specified as an

authentication method after radius, no authentication is used if the RADIUS

server is down.

Keyword

Source or destination

enable

Uses the enable password for authentication.

line

Uses the line password for authentication.

local

Uses the local username database for authentication.

none

Uses no authentication.

radius

Uses the list of all RADIUS servers for authentication.

tacacs

Uses the list of all TACACS+ servers for authentication.

2CSPC4.XModular-SWUM200.book Page 222 Thursday, March 10, 2011 11:18 AM