7000 Series L3 Managed Switch Reference Manual for Software v2.0

config authentication login set

This command sets an ordered list of methods in the authentication login list. The maximum number of authentication login methods is three. The possible method values are local, radius, and reject.

The value of local indicates that the user’s locally stored ID and password are used for authentication. The value of radius indicates that the user’s ID and password will be authenticated using the RADIUS server. The value of reject indicates that the user is never authenticated.

To authenticate a user, the authentication methods in the user’s login will be attempted in order until an authentication attempt succeeds or fails.

Note: The default login list included with the default configuration can not be changed.

Default

None

Format

config authentication login set <listname>

 

<local/radius/reject> [local/radius/reject]

 

[local/radius/reject]

config dot1x defaultlogin

This command assigns the authentication login list to use for nonconfigured users for 802.1x port security. This setting is overridden by the authentication login list assigned to a specific user if the user is configured locally. If this value is not configured, users will be authenticated using local authentication only.

Format

config dot1x defaultlogin <listname>

config dot1x login

This command assigns the specified authentication login list to the specified user for port security. The <user> must be a configured <user> and the <listname> must be a configured login list.

Format

config dot1x login <user> <listname>

config dot1x port users add

This command adds the specified user to the list of users with access to the specified port. The <user> must be a configured <user> and the <port> must be a valid port. By default, a user is given access to all ports.

Switching Commands

7-77

Page 131
Image 131
NETGEAR L3 Config authentication login set, Config dot1x defaultlogin, Config dot1x login, Config dot1x port users add