244 AAA Commands
no aaa authentication login {default |
list-name
}
default
— Uses the listed authentication methods th at follow this
argument as the default list of methods when a user logs in.
list-name
— Character string used to name the list of authentication
methods activated when a user logs in. (Rang e: 1-15 characters)
method1
[
method2
...
]
— Specify at least one from the following table:
Default Configuration
The default login lists are defaultList and networkList. defaultList is used by
the console and only contains the method none. networkList is used b y telne t
and SSH and only contains the method local.
Command Mode
Global Configuration mode
User Guidelines
The default and optional list names created with the aaa authentication
login command are used with the login authentication command. Create a
list by entering the aaa authenticatio n login
list-name method
command for
a particular protocol, where
list-name
is any character string used to name
this list. The
method
argument identifies the list of methods that the
authentication algorithm tries, in the given sequence.
The additional methods of authentication are used only if the previous
method returns an error, not if there is an authentication failure. Only the
RADIUS or TACACS+ methods can return an error. To ensure that the
authentication succeeds even if all methods return an error, specify none as
Keyword Source or destination
enable Uses the enable password for authentication.
line Uses the line password for authentication.
local Uses the local username database for authentication.
none Uses no authentication.
radius Uses the list of all RADIUS servers for authentication.
tacacs Uses the list of all TACACS+ servers for authentication.
2CSPC4.XCT-SWUM2XX1.book Page 244 Monday, October 3, 2011 11:05 AM