Brocade Communications Systems Brocade ICX 6650 6650 Manual De Usuario
52
Brocade ICX 6650 Security Configuration Guide
53-1002601-01
RADIUS security
The command above causes RADIUS to be the primary authentication method for securing access
to Privileged EXEC level and CONFIG levels of the CLI. If RADIUS authentication fails due to an error
with the server, local authentication is used instead. If local authentication fails, no authentication
is used; the device automatically permits access.
to Privileged EXEC level and CONFIG levels of the CLI. If RADIUS authentication fails due to an error
with the server, local authentication is used instead. If local authentication fails, no authentication
is used; the device automatically permits access.
Syntax: [no] aaa authentication enable | login default method1 [method2] [method3] [method4]
[method5] [method6] [method7]
The enable | login parameter specifies the type of access this authentication-method list controls.
You can configure one authentication-method list for each type of access.
You can configure one authentication-method list for each type of access.
The method1 parameter specifies the primary authentication method. The remaining optional
method parameters specify additional methods to try if an error occurs with the primary method. A
method can be one of the values listed in the Method Parameter column in the following table.
method parameters specify additional methods to try if an error occurs with the primary method. A
method can be one of the values listed in the Method Parameter column in the following table.
NOTE
For examples of how to define authentication-method lists for types of authentication other than
RADIUS, refer to
For examples of how to define authentication-method lists for types of authentication other than
RADIUS, refer to
TABLE 9
Authentication method values
Method parameter
Description
line
Authenticate using the password you configured for Telnet access. The Telnet password is
configured using the enable telnet password… command. Refer to
configured using the enable telnet password… command. Refer to
enable
Authenticate using the password you configured for the Super User privilege level. This
password is configured using the enable super-user-password… command. Refer to
password is configured using the enable super-user-password… command. Refer to
local
Authenticate using a local user name and password you configured on the device. Local
user names and passwords are configured using the username… command. Refer to
user names and passwords are configured using the username… command. Refer to
tacacs
Authenticate using the database on a TACACS server. You also must identify the server to
the device using the tacacs-server command.
the device using the tacacs-server command.
tacacs+
Authenticate using the database on a TACACS+ server. You also must identify the server to
the device using the tacacs-server command.
the device using the tacacs-server command.
radius
Authenticate using the database on a RADIUS server. You also must identify the server to
the device using the radius-server command.
the device using the radius-server command.
none
Do not use any authentication method. The device automatically permits access.