Technical data

ManualsBrandsBrocade Communications Systems ManualsHome Theater ServerServerIron ADX 12.4.00

151

152

153

154

155

156

157

158

159

160

138 ServerIron ADX Administration Guide

53-1002434-01

Configuring authentication-method lists

Examples of authentication-method lists

Example

The following example shows how to configure authentication-method lists for the Web

Management Interface, IronView and the Privileged EXEC and CONFIG levels of the CLI. The

primary authentication method for each is “local”. The device will authenticate access attempts

using the locally configured user names and passwords first.

To configure an authentication-method list for the Web Management Interface, enter a command

such as the following.

ServerIronADX(config)# aaa authentication web-server default local

This command configures the device to use the local user accounts to authenticate access to the

device through the Web Management Interface. If the device does not have a user account that

matches the user name and password entered by the user, the user is not granted access.

To configure an authentication-method list for IronView, enter a command such as the following.

ServerIronADX(config)# aaa authentication snmp-server default local

This command configures the device to use the local user accounts to authenticate access

attempts through IronView.

To configure an authentication-method list for the Privileged EXEC and CONFIG levels of the CLI,

enter the following command.

ServerIronADX(config)# aaa authentication enable default local

This command configures the device to use the local user accounts to authenticate attempts to

access the Privileged EXEC and CONFIG levels of the CLI.

Example

To configure the device to consult a RADIUS server first to authenticate attempts to access the

Privileged EXEC and CONFIG levels of the CLI, then consult the local user accounts if the RADIUS

server is unavailable, enter the following command.

ServerIronADX(config)# aaa authentication enable default radius local

Syntax: [no] aaa authentication snmp-server | web-server | enable | login default <method1>

[<method2>] [<method3>] [<method4>] [<method5>] [<method6>] [<method7>]

The snmp-server | web-server | enable | login parameter specifies the type of access this

authentication-method list controls. You can configure one authentication-method list for each

type of access.

NOTE

TACACS or TACACS+ and RADIUS are supported only with the enable and login parameters.

The <method1> parameter specifies the primary authentication method. The remaining optional

<method> parameters specify additional methods to try if an error occurs with the primary method.

A method can be one of the values listed in the Method Parameter column in the following table.