User Guide

C
OMMAND
L
INE
I
NTERFACE
4-96
You can specify three authentication methods in a single command to
indicate the authentication sequence. For example, if you enter
authentication enable radius tacacs local, the user name and
password on the RADIUS server is verified first. If the RADIUS
server is not available, then authentication is attempted on the
TACACS+ server. If the TACACS+ server is not available, the local
user name and password is checked.
Example
Related Commands
enable password - sets the password for changing command modes (4-36)
RADIUS Client
Remote Authentication Dial-in User Service (RADIUS) is a logon
authentication protocol that uses software running on a central server to
control access to RADIUS-aware devices on the network. An
authentication server contains a database of multiple user name/password
pairs with associated privilege levels for each user or group that require
management access to a switch.
Console(config)#authentication enable radius
Console(config)#
Table 4-29 RADIUS Client Commands
Command Function Mode Page
radius-server host Specifies the RADIUS server GC 4-98
radius-server port Sets the RADIUS server network port GC 4-98
radius-server key Sets the RADIUS encryption key GC 4-98
radius-server
retransmit
Sets the number of retries GC 4-99
radius-server timeout Sets the interval between sending
authentication requests
GC 4-99
show radius-server Shows the current RADIUS settings PE 4-100