PC 7024 SSH without enable password

Do I have to have a radius server?  With other switches I have(6024/6048 and 7024 older firmware) I use ssh to authenticate local users, and don't need a separate enable password to log in, just the local user authentication is enough.

Hi, you can use AAA to configure authenticating with SSH with a radius server to provide authentication for users and will allow them to have enable access without entering a password. ftp://ftp.dell.com/Manuals/Common/powerconnect-7024_User%27s%20Guide_en-us.pdf page 184 ftp://ftp.dell.com/Manuals/Common/powerconnect-7024_Reference%20Guide_en-us.pdf 259

The enable password requirement was added in a later version of the firmware. You could try what it shows is the firmware upgrade guide and set enable to off. Release 4.1.0.6

Ø Authentication

The enable and line authentication methods will no longer perform authentication if a password for the method is not configured. Previously, these methods would always succeed if no password was configured. To achieve the same functionality, add the “none” method to the list after enable or line method.16 System Firmware Version 5.1.1.7

The default authentication list for telnet and SSH has been changed to enableNetList. The only authentication method contained in enableNetList is enabled. The net effect of these two changes is that a password is required to enter privileged exec mode when using telnet or SSH.

Administrators wishing to maintain the previous PowerConnect behavior can set the default authentication list for telnet and SSH to enableList, which has the enable and none authentication methods (no password required to enter privileged exec mode). The following commands change the telnet authentication method to enableList.

console(config)# line telnet console(config)# enable authentication