Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-16599-01, March 2009)

Send comments to nx5000-docfeedback@cisco.com

6-5

Cisco Nexus 5000 Series Command Reference

OL-16599-01

Chapter 6 Security Commands

aaa authentication login default

To configure the default AAA authentication methods, use the aaa authentication login default

command. To revert to the default, use the no form of this command.

aaa authentication login default {group group-list} [none] | local | none}

no aaa authentication login default {group group-list} [none] | local | none}

Syntax Description

Command Default The local database.

Command Modes Configuration mode

Command History

Usage Guidelines The group radius, group tacacs+, and group group-list methods refer to a set of previously defined

RADIUS or TACACS+ servers. Use the radius-server host or tacacs-server host command to

configure the host servers. Use the aaa group server command to create a named group of servers.

If you specify the group method or local method and they fail, then the authentication fails. If you

specify the none method alone or after the group method, then the authentication always succeeds.

Examples This example shows how to configure the AAA authentication console login method:

switch(config)# aaa authentication login default group radius

This example shows how to revert to the default AAA authentication console login method:

switch(config)# aaa authentication login default group radius

group Specifies that a server group be used for authentication.

group-list Specifies a space-separated list of RADIUS or TACACS+ server groups that

can include the following:

• radius for all configured RADIUS servers.

• tacacs+ for all configured TACACS+ servers.

• Any configured RADIUS or TACACS+ server group name.

none (Optional) Specifies that the username be used for authentication.

local (Optional) Specifies that the local database be used for authentication.

Release Modification

4.0(0)N1(1a) This command was introduced.