7000 Series L3 Managed Switch Reference Manual for Software v2.0
Switching Commands 7-77
This command sets an ordered list of methods in the authentication login list. The maximum
number of authentication login methods is three. The possible method values are local, radius, and
reject.
The value of local indicates that the user’s locally stored ID and password are used for
authentication. The value of radius indicates that the user’s ID and password will be authenticated
using the RADIUS server. The value of reject indicates that the user is never authenticated.
To authenticate a user, the authentication methods in the user’s login will be attempted in order
until an authentication attempt succeeds or fails.
Note: The default login list included with the default configuration can not be changed.
Default None
Format config authentication login set <listname>
<local/radius/reject> [local/radius/reject]
[local/radius/reject]
config dot1x defaultloginThis command assigns the authentication login list to use for nonconfigured users for 802.1x port
security. This setting is overridden by the authentication login list assigned to a specific user if the
user is configured locally. If this value is not configured, users will be authenticated using local
authentication only.
Format config dot1x defaultlogin <listname>
config dot1x login This command assigns the specified authentication login list to the specified user for port security.
The <user> must be a configured <user> and the <listname> must be a configured login list.
Format config dot1x login <user> <listname>
config dot1x port users add This command adds the specified user to the list of users with access to the specified port. The
<user> must be a configured <user> and the <port> must be a valid port. By default, a user is given
access to all ports.