2-209
Catalyst 6500 Series Switch Command Reference—Release7.6
78-15328-01
Chapter2 Catalyst 6500 Series Switch and ROM Monitor Commands set authentication enable
set authentication enable
To enable authentication using the TACACS+, RADIUS, or Kerberos server to determine if you have
privileged access permission, use the set authentication enable command.
set authentication enable {radius | tacacs | kerberos} enable [console | telnet | http | all]
[primary]
set authentication enable {enable | disable} [console | telnet | http | all] [primary]
set authentication enable local {enable | disable} [console | telnet | http | all] [primary]
set authentication enable attempt count [console | telnet]
set authentication enable lockout time [console | telnet]
Syntax Description
Defaults Local authentication is enabled for console and Telnet sessions. RAD IUS, TACACS+, and Kerberos are
disabled for all session types. If authentication is enabled, the default attempt count is 3.
Command Types Switch command.
Command Modes Privileged.
radius Specifies RADIUS authentication for login.
tacacs Specifies TACACS+ authentication for login.
kerberos Specifies Kerberos authentication for login.
enable Enables the specified authentication method for login.
console (Optional) Specifies the authentication method for console sessions.
telnet (Optional) Specifies the authentication method for Telnet sessions.
http (Optional) Specifies the specified authentication method for HTTP
sessions.
all (Optional) Applies the authentication method to all session types.
primary (Optional) Specifies the specified authentication method be tried
first.
disable Disables the specified authentication method for login.
local Specifies local authentication for login.
attempt
count Specifies the number of connection attempts before initiating an
error; valid values are 0, from 3 to 10, and 0 to disable.
lockout time Specifies the lockout timeout; valid values are from 30 to 600
seconds, and 0 to disable.