Configure Login Authentication For Terminal Lines - Dell Force10 C150 Configuration Manual
Ftos configuration guide ftos 8.4.2.7 e-series terascale, c-series, s-series (s50/s25)
Hide thumbs
Also See for Force10 C150:
- Manual (57 pages) ,
- Manual (66 pages) ,
- Quick start manual (33 pages)
Table of Contents
Advertisement
Figure 4-5. Applying an Access List to a VTY Line
FTOS(config-std-nacl)#show config
!
ip access-list standard myvtyacl
seq 5 permit host 10.11.0.1
FTOS(config-std-nacl)#line vty 0
FTOS(config-line-vty)#show config
line vty 0
access-class myvtyacl
FTOS Behavior: Prior to FTOS version 7.4.2.0, in order to deny access on a VTY line, you must apply
an ACL and AAA authentication to the line. Then users are denied access only after they enter a
username and password. Beginning in FTOS version 7.4.2.0, only an ACL is required, and users are
denied access before they are prompted for a username and password.
Configure Login Authentication for Terminal Lines
You can use any combination of up to 6 authentication methods to authenticate a user on a terminal line. A
combination of authentication methods is called a method list. If the user fails the first authentication
method, FTOS prompts the next method until all methods are exhausted, at which point the connection is
terminated. The available authentication methods are:
enable
•
line
•
—Prompt for the e password you assigned to the terminal line. You must configure a password for
the terminal line to which you assign a method list that contains the
Configure a password using the command password from LINE mode.
local
•
—Prompt for the the system username and password.
none
•
—Do not authenticate the user.
radius
•
tacacs+
•
To configure authentication for a terminal line:
Step
Task
1
Create an authentication method list.
You may use a mnemonic name or
use the keyword
authentication method for terminal
local
lines is
list is empty.
2
Apply the method list from Step 1 to
a terminal line.
70
|
System Management
—Prompt for the enable password.
—Prompt for a username and password and use a RADIUS server to authenticate.
—Prompt for a username and password and use a TACACS+ server to authenticate.
default
. The default
default
, and the
method
Command Syntax
aaa authentication login {
default } [
] [
method-1
method-2
[
method-4
] [
method-5
] [
method-6
login authentication {
method-list-name
default }
line
authentication method.
Command Mode
|
method-list-name
CONFIGURATION
] [
]
method-3
]
|
CONFIGURATION
Hide quick links:
Advertisement
Table of Contents
Troubleshooting
