authentication type

Description                                                    Set the authentication method used to authenticate administrative access to the ACOS device.

Syntax                                                                  [no] authentication [console] type method1 
[
method2 [method3 [method4]]]

Parameter

Description

console

Applies the authentication settings only to access through the con­sole (serial) port. Without this option, the settings apply to all types of admin access.

type method1 
[
method2 
[
method3 
[
method4]]]

Uses the ACOS configuration for authentication. If the administrative username and password match an entry in the configuration, the administrator is granted access.

The following authentication types are supported:

  ldap—Uses an external LDAP server for authentication.

  local—Uses the ACOS configuration for authentication. If the administrative username and password match an entry in the con­figuration, the administrator is granted access.

  radius—Uses an external RADIUS server for authentication.

  tacplus—Uses an external TACACS+ server for authentication.

By default, only local authentication is used.

Default                                                                By default, only local authentication is used.

Mode                                                                   Configuration mode

Usage                                                                  The local database (local option) must be included as one of the authentication sources, regardless of the order is which the sources are used. Authentication using only a remote server is not supported.

To configure the external authentication server(s), see radius-server or tacacs-server host.

Example                                                            The following commands configure a pair of RADIUS servers and configure the ACOS device to try them first, before using the local database. Since 10.10.10.12 is added first, this server will be used as the primary server. Server 10.10.10.13 will be used only if the primary server is unavailable. The local database will be used only if both RADIUS servers are unavailable.

ACOS(config)#radius-server host 10.10.10.12 secret radp1

ACOS(config)#radius-server host 10.10.10.13 secret radp2

ACOS(config)#authentication type radius local

 

Table of Contents

Index

Glossary

-Search-

Back