Users Guide

ManualsBrandsDell ManualsAccess PlatformsPowerSwitch N1500 Series

871

872

873

874

875

876

877

878

879

880

Security Commands 876

Example

The following example configures the default authentication login to attempt

RADIUS authentication, then local authentication, then enable

authentication, and then, if all the previous methods returned an error, allows

the administrator access to the switch console (via the none method).

console(config)# aaa authentication login default radius local enable none

aaa authorization

Use the aaa authorization command to enable authorization and optionally

create an authorization method list. A list may be identified by a user-

specified list-name or the keyword default.

Use the no form of the command to disable authorization and optionally

delete an authorization list.

Syntax

aaa authorization {commands|exec|network}{default|list-name}

{method1 [method2]}

no aaa authorization {commands|exec|network} {default|list-name}

• exec—

Provides Exec authorization. All methods are supported.

• commands—

Performs authorization of user commands. Only none and

TACACs methods are supported.

• network—

Performs RADIUS authorization. Only the default list is

supported.

• default—

The default list of methods for authorization services

. The list

dfltCmdAuthList is the default list for command authorization and the

list dfltExecAuthList is the default list for Exec authorization.

• list-name—

Character string used to name the list of authorization

methods. The list name can consist of any alphanumeric character up to

20 characters in length. Use quotes around the list name if embedded

blanks are contained in the list name.

• method—The following authorization methods are supported:

– local—Perform local authorization.

– none—Do not perform authorization. All functions are authorized.