Reference Guide
Brocade Fabric OS Command Reference 7
53-1004112-02
aaaConfig
-s secret
Specifies a common secret between the switch and the RADIUS or TACACS+ server.
The secret must be 8 to 40 characters for RADIUS server, and 1 to 40 characters for
TACACS+ server. This option is valid only with -conf radius or -conf tacacs+options,
and it is optional. The default value is sharedsecret.
-a
Specifies the remote authentication protocol for the RADIUS or TACACS+ server. This
operand is valid with -conf radius or -conf tacacs+ options, and it is optional. The
default value for this operand is CHAP.
Note that the distinction between protocols is only applicable to the packets between a
system and the RADIUS or TACACS+ server. To authenticate a user to the system, a
password is always used.
Valid protocols are one of the following:
pap
Password Authentication Protocol
chap
Challenge-Handshake Authentication Protocol
peap-mschapv2
Protected Extensible Authentication Protocol. This is applicable only to RADIUS
configuration. The combination of "peap-mschapv2" and IPv6 causes RADIUS
authentication to be rejected. PEAP with IPv4 succeeds.
-e encr_type
Specifies the encryption algorithm. This is applicable only to RADIUS configuration.
Valid algorithms include the following:
none
Null encryption algorithm
aes256
AES-256 algorithm
--remove server
Removes the specified server from the configuration. The server must match one of the IP
addresses or the names shown in the current configuration. The following operand is
required:
-conf radius | ldap | tacacs+
Specifies the server configuration as either RADIUS, LDAP, or TACACS+. If the server is
enabled, the command does not allow the last server to be removed from the configuration
list. RADIUS, LDAP, or TACACS+ must first be disabled before the last server of the
specified type may be removed.