Purpose
Command or Action
switch(config)#
exit
switch#
Displays the configuration of the console and default login
authentication methods.
(Optional)
show aaa authentication
Example:
Step 4
switch#
show aaa authentication
Copies the running configuration to the startup
configuration.
(Optional)
copy running-config startup-config
Example:
Step 5
switch#
copy running-config startup-config
Enabling the Default User Role for AAA Authentication
You can allow remote users who do not have a user role to log in to the Cisco NX-OS device through a
RADIUS or remote authentication server using a default user role. When you disable the AAA
default user role feature, remote users who do not have a user role cannot log in to the device.
SUMMARY STEPS
1.
configure terminal
2.
aaa user default-role
3.
exit
4.
(Optional)
show aaa user default-role
5.
(Optional)
copy running-config startup-config
DETAILED STEPS
Purpose
Command or Action
Enters configuration mode.
configure terminal
Example:
Step 1
switch#
configure terminal
switch(config)#
Enables the default user role for AAA authentication. The
default is enabled.
aaa user default-role
Example:
Step 2
You can disable the default user role feature by using the
no
form of this command.
switch(config)#
aaa user default-role
Exits configuration mode.
exit
Example:
Step 3
switch(config)#
exit
switch#
Displays the AAA default user role configuration.
(Optional)
show aaa user default-role
Example:
Step 4
switch#
show aaa user default-role
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
20
Configuring AAA
Enabling the Default User Role for AAA Authentication