Manualshelf

Cisco Nexus 5000 Series Switch CLI Software Configuration Guide, NX-OS 4.0(1a)N1 (OL-16597-01, January 2009)

ManualsBrandsHP ManualsStorageCisco MDS 9513 with Supervisor 2 Director Switch
241242243244245246247248249250
Send feedback to nx5000-docfeedback@cisco.com
16-6
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 16 Configuring AAA
AAA Guidelines and Limitations
The remote server responds to AAA requests from the Nexus 5000 Series switch (see the “Manually
Monitoring RADIUS Servers or Groups” section on page 17-13 and the “Manually Monitoring
TACACS+ Servers or Groups” section on page 18-12).
AAA Guidelines and Limitations
The Nexus 5000 Series switches do not support all numeric usernames, whether created with TACACS+
or RADIUS, or created locally, and do not create local users with all numeric names. If an all numeric
username exists on an AAA server and is entered during login, the Nexus 5000 Series switch will log in
the user.
Configuring AAA
To configure AAA authentication and accounting, perform this task:
Step 1 If you want to use remote RADIUS or TACACS+ servers for authentication, configure the hosts on your
Nexus 5000 Series switch. See Chapter 17, “Configuring RADIUS” and Chapter 18, “Configuring
TACACS+.
Step 2 Configure console login authentication methods. See the “Configuring Console Login Authentication
Methods” section on page 16-6.
Step 3 Configure default login authentication methods for user logins. See the “Configuring Default Login
Authentication Methods” section on page 16-8
Step 4 Configure default AAA accounting default methods. See the “Configuring AAA Accounting Default
Methods” section on page 16-10.
The following topics describe the AAA configuration procedure in more details:
Configuring Console Login Authentication Methods, page 16-6
Configuring Default Login Authentication Methods, page 16-8
Enabling Login Authentication Failure Messages, page 16-8
Enabling MSCHAP Authentication, page 16-9
Configuring AAA Accounting Default Methods, page 16-10
Using AAA Server VSAs with Nexus 5000 Series Switches, page 16-11
Configuring Console Login Authentication Methods
This section describes how to configure the authentication methods for the console login.
The authentication methods include the following: