跳转至主要内容
  • 快速、轻松地下订单
  • 查看订单并跟踪您的发货状态
  • 创建并访问您的产品列表
  • 使用“Company Administration”(公司管理),管理Dell EMC站点、产品和产品级联系人。

Dell PowerEdge FN I/O Module Command Line Reference Guide 9.10(0.0)

PDF

aaa authentication login

Configure AAA Authentication method lists for user access to EXEC mode ( Enable log-in).

Syntax aaa authentication login { method-list-name | default} method [ ... method4]

To return to the default setting, use the no aaa authentication login { method-list-name | default} command.

Parameters
method-list-name Enter a text string (up to 16 characters long) as the name of a user-configured method list that can be applied to different lines.
default Enter the keyword default to specify that the method list specified is the default method for all terminal lines.
method Enter one of the following methods:
  • enable: use the password the enable password command defines in CONFIGURATION mode.
  • line: use the password the password command defines in LINE mode.
  • none: no authentication.
  • radius: use the RADIUS servers configured with the radius-server host command.
  • tacacs+: use the TACACS+ servers configured with the tacacs-server host command.
... method4 (OPTIONAL) Enter up to four additional methods. In the event of a “no response” from the first method, Dell Networking Operating System (OS) applies the next configured method (up to four configured methods).
Defaults Not configured (that is, no authentication is performed).
Command Modes CONFIGURATION
Supported Modes All Modes
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
9.4(0.0) Supported on the FN I/O Aggregator.
9.3(0.0) Supported on the M I/O Aggregator.
Usage Information

By default, the locally configured username password is used. If you configure aaa authentication login default , Dell Networking Operating System (OS) uses the methods this command defines for login instead.

Methods configured with the aaa authentication login command are evaluated in the order they are configured. If users encounter an error with the first method listed, Dell Networking Operating System (OS) applies the next method configured. If users fail the first method listed, no other methods are applied. The only exception is the local method. If the user’s name is not listed in the local database, the next method is applied. If the correct user name/password combination is not entered, the user is not allowed access to the switch.

  • NOTE: If authentication fails using the primary method, Dell Networking Operating System (OS) employs the second method (or third method, if necessary) automatically. For example, if the TACACS+ server is reachable, but the server key is invalid, Dell Networking Operating System (OS) proceeds to the next authentication method. The TACACS+ is incorrect, but the user is still authenticated by the secondary method.

After configuring the aaa authentication login command, configure the login authentication command to enable the authentication scheme on terminal lines.

Connections to the SSH server work with the following login mechanisms: local, radius, and tacacs.

Related Commands

login authentication — enables AAA login authentication on the terminal lines.

radius-server host — specifies a RADIUS server host.

tacacs-server host — specifies a TACACS+ server host.


对此内容评级

准确性
有用性
易理解性
这篇文章对您有帮助吗?
0/3000 characters
  请提供评级(1-5星)。
  请提供评级(1-5星)。
  请提供评级(1-5星)。
  请选择这篇文章是否有帮助。
  注释中不得包含以下特殊字符:<>()\