Korenix Technology Co., Ltd.
Industrial
Layer 3 Managed Ethernet Switch
_____________________________________________________________________________
Industrial Layer 3 Managed Ethernet SwitchUser Manual
Page: 353/1568
6.9.2
Configuration Commands
6.9.2.1
aaa authentication login <method>
This command creates an authentication login list. The <
listname>
is up to 12 alphanumeric characters
and is not case sensitive. Up to 5 authentication login lists can be configured on the switch.
If the authentication login list does not exist, a new authentication login list is first created and then the
authentication methods are set in the authentication login list.
The possible method values are enable,
ldap, line, local, radius, noneand tacacs.
The value of
local
indicates that the user
’s locally stored ID and password are used for authentication.
The value of
radius
indicates that the us
er’s ID and password will be authenticated using the RADIUS
server. The value of
none
indicates that the user is never authenticated. The value of
tacacs
indicates
that the us
er’s ID and password will be authenticated using the TACACS. The value of
ldap
indicates
that the us
er’s ID and password will be authenticated using the LDAP.
To authenticate a user, the authentication methods in the
user’s login will be attempted in order until an
authentication attempt succeeds or fails.
i
The default login list included with the default configuration cannot be changed.
Syntax
aaa authentication login <listname> { enable | ldap | line | local | none | radius | tacacs}
no aaa authentication login <listname>
<listname> -
creates an authentication login list (Range: up to 12 characters).
no -
This command deletes the specified authentication login list. The attempt to delete will fail if any
of the following conditions are true:
1. The login list name is invalid or does not match an existing authentication login list
2. The specified authentication login list is assigned to any user or to the nonconfigured user for
any component.
3. The login list is the default login list included with the default configuration and was not
created using
‘config authentication login create’. The default login list cannot be deleted.
Default Setting
None
Command Mode
Global Config