Home » Dell Manuals » Servers » Dell Force10 S55T » Manual Viewer

Dell Force10 S55T FTOS Command Line Reference Guide for the S55 System FTOS 8. - Page 916

Parameters, Default, Command Modes, Command, History, Usage, Information, username password, local

Add to My Manuals
Save this manual to your list of manuals

Page 916 highlights

www.dell.com | support.dell.com Parameters method-list-name default method ... method4 Enter a text string (up to 16 characters long) as the name of a user-configured method list that can be applied to different lines. Enter the keyword default to specify that the method list specified is the default method for all terminal lines. Enter one of the following methods: • enable - use the password defined by the enable password command in the CONFIGURATION mode. • line - use the password defined by the password command in the LINE mode. • local - use the user name/password defined by the in the local configuration. • none - no authentication. • radius - use the RADIUS server(s) configured with the radius-server host command. • tacacs+ - use the TACACS+ server(s) configured with the tacacs-server host command. (OPTIONAL) Enter up to four additional methods. In the event of a "no response" from the first method, FTOS applies the next configured method (up to four configured methods). Default Command Modes Command History Not configured (that is, no authentication is performed) CONFIGURATION Version 8.3.5.0 Version 7.6.1.0 Version 7.5.1.0 pre-Version 6.2.1.0 Introduced on S55 Introduced for S-Series Introduced for C-Series Introduced on E-Series Usage By default, the locally configured username password will be used. If aaa authentication login Information default is configured, FTOS will use the methods defined by this command for login instead. Methods configured with the aaa authentication login command are evaluated in the order they are configured. If users encounter an error with the first method listed, FTOS applies the next method configured. If users fail the first method listed, no other methods are applied. The only exception is the local method. If the user's name is not listed in the local database, the next method is applied. If the correct user name/password combination are not entered, the user is not allowed access to the switch. Note: If authentication fails using the primary method, FTOS employs the second method (or third method, if necessary) automatically. For example, if the TACACS+ server is reachable, but the server key is invalid, FTOS proceeds to the next authentication method. The TACACS+ is incorrect, but the user is still authenticated by the secondary method. After configuring the aaa authentication login command, configure the login authentication command to enable the authentication scheme on terminal lines. Connections to the SSH server will work with the following login mechanisms: local, radius and tacacs. 916 | Security

Section	Page
About this Guide	11
Objectives	11
Audience	11
Conventions	11
Information Symbols	12
Related Documents	12
CLI Basics	13
Accessing the Command Line	13
Multiple Configuration Users	14
Navigating the Command Line Interface	14
Obtaining Help	15
Using the Keyword No	17
Filtering show Commands	17
Displaying All Output	18
Filtering Command Output Multiple Times	18
Command Modes	18
EXEC Mode	19
EXEC Privilege Mode	19
CONFIGURATION Mode	19
INTERFACE Mode	19
LINE Mode	20
TRACE-LIST Mode	20
MAC ACCESS LIST Mode	20
IP ACCESS LIST Mode	21
ROUTE-MAP Mode	21
PREFIX-LIST Mode	21
AS-PATH ACL Mode	21
IP COMMUNITY LIST Mode	22
REDIRECT-LIST Mode	22
SPANNING TREE Mode	22
Per-VLAN SPANNING TREE Plus Mode	22
RAPID SPANNING TREE Mode	23
MULTIPLE SPANNING TREE Mode	23
PROTOCOL GVRP Mode	23
ROUTER OSPF Mode	23
ROUTER RIP Mode	24
ROUTER BGP Mode	24
Determining the Chassis Mode	24
File Management	25
Overview	25
Basic File Management Commands	25
Control and Monitoring	63
Overview	63
Commands	63
802.1ag	157
Overview	157
Commands	157
S55 u-Boot	169
Overview	169
Commands	169
Access Control Lists (ACL)	175
Overview	175
Commands Common to all ACL Types	175
Common IP ACL Commands	177
Standard IP ACL Commands	181
Extended IP ACL Commands	188
Common MAC Access List Commands	219
Standard MAC ACL Commands	222
Extended MAC ACL Commands	226
IP Prefix List Commands	232
Route Map Commands	238
AS-Path Commands	256
IP Community List Commands	260
Border Gateway Protocol IPv4(BGPv4)	265
Overview	265
BGPv4 Commands	266
MBGP Commands	342
BGP Extended Communities (RFC 4360)	367
Bare Metal Provisioning	377
Overview	377
Commands	377
Content Addressable Memory (CAM)	381
Overview	381
CAM Profile Commands	381
Important Points to Remember	381
Dynamic Host Configuration Protocol (DHCP)	395
Overview	395
Commands to Configure the System to be a DHCP Server	395
Commands to Configure Secure DHCP	403
Dell Force10 Resilient Ring Protocol (FRRP)	409
Overview	409
Commands	409
Important Points to Remember	409
GARP VLAN Registration (GVRP)	417
Overview	417
Commands	417
Important Points to Remember	418
Internet Group Management Protocol (IGMP)	427
Overview	427
IGMP Commands	427
Important Points to Remember	427
IGMP Snooping Commands	438
Important Points to Remember for IGMP Snooping	438
Important Points to Remember for IGMP Querier	438
Interfaces	443
Overview	443
Basic Interface Commands	443
Port Channel Commands	499
IPv4 Routing	509
Overview	509
Commands	509
IPv6 Access Control Lists (IPv6 ACLs)	561
Overview	561
Important Points to Remember	561
IPv6 ACL Commands	561
IPv6 Route Map Commands	586
IPv6 Basics	591
Overview	591
Commands	591
iSCSI Optimization	603
Overview	603
Link Aggregation Control Protocol (LACP)	611
Overview	611
Commands	611
Layer 2	619
Overview	619
MAC Addressing Commands	619
Virtual LAN (VLAN) Commands	637
Link Layer Detection Protocol (LLDP)	647
Overview	647
Commands	647
LLDP-MED Commands	656
Multiple Spanning Tree Protocol (MSTP)	665
Overview	665
Commands	665
Multicast	679
Overview	679
IPv4 Multicast Commands	679
IPv6 Multicast Commands	687
Neighbor Discovery Protocol (NDP)	693
Overview	693
Commands	693
Open Shortest Path First (OSPFv2 and OSPFv3)	701
Overview	701
OSPFv2 Commands	701
PIM-Sparse Mode (PIM-SM)	759
Overview	759
IPv4 PIM-Sparse Mode Commands	759
PIM-Source Specific Mode (PIM-SSM)	775
Overview	775
IPv4 PIM Commands	775
IPv4 PIM-Source Specific Mode COmmands	775
Port Monitoring	779
Overview	779
Commands	779
Important Points to Remember	779
Private VLAN (PVLAN)	785
Overview	785
Commands	785
Private VLAN Concepts	785
Per-VLAN Spanning Tree plus (PVST+)	795
Overview	795
Commands	795
Quality of Service (QoS)	807
Overview	807
Global Configuration Commands	807
Per-Port QoS Commands	808
Policy-Based QoS Commands	816
Important Points to Remember—multicast-bandwidth option	830
Queue-Level Debugging	852
Router Information Protocol (RIP)	865
Overview	865
Commands	865
Remote Monitoring (RMON)	885
Overview	885
Commands	885
Rapid Spanning Tree Protocol (RSTP)	897
Overview	897
Commands	897
Security	907
Overview	907
Commands	907
AAA Accounting Commands	907
Authorization and Privilege Commands	910
Authentication and Password Commands	914
RADIUS Commands	926
TACACS+ Commands	931
Port Authentication (802.1X) Commands	934
Important Points to Remember	934
SSH Server and SCP Commands	942
Secure DHCP Commands	954
Service Provider Bridging	959
Overview	959
Commands	959
Important Points to Remember	959
sFlow	965
Overview	965
Important Points to Remember	965
Commands	966
SNMP and Syslog	975
Overview	975
SNMP Commands	975
Important Points to Remember	976
Syslog Commands	991
Storm Control	1005
Overview	1005
Commands	1005
Important Points to Remember	1005
S-Series Stacking Commands	1015
Overview	1015
Commands	1015
Spanning Tree Protocol (STP)	1029
Overview	1029
Commands	1029
Time and Network Time Protocol (NTP)	1039
Overview	1039
Commands	1039
VLAN Stacking	1055
Overview	1055
Commands	1055
Important Points to Remember	1055
Virtual Router Redundancy Protocol (VRRP)	1065
Overview	1065
Commands	1065
S-Series Debugging and Diagnostics	1077
Diagnostics and Monitoring Commands	1077
Offline Diagnostic Commands	1078
Important Points to Remember	1078
Buffer Tuning Commands	1080
Hardware Commands	1085
ICMP Message Types	1095
SNMP Traps	1097
Index	1101

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
437
438
439
440
441
442
443
444
445
446
447
448
449
450
451
452
453
454
455
456
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481
482
483
484
485
486
487
488
489
490
491
492
493
494
495
496
497
498
499
500
501
502
503
504
505
506
507
508
509
510
511
512
513
514
515
516
517
518
519
520
521
522
523
524
525
526
527
528
529
530
531
532
533
534
535
536
537
538
539
540
541
542
543
544
545
546
547
548
549
550
551
552
553
554
555
556
557
558
559
560
561
562
563
564
565
566
567
568
569
570
571
572
573
574
575
576
577
578
579
580
581
582
583
584
585
586
587
588
589
590
591
592
593
594
595
596
597
598
599
600
601
602
603
604
605
606
607
608
609
610
611
612
613
614
615
616
617
618
619
620
621
622
623
624
625
626
627
628
629
630
631
632
633
634
635
636
637
638
639
640
641
642
643
644
645
646
647
648
649
650
651
652
653
654
655
656
657
658
659
660
661
662
663
664
665
666
667
668
669
670
671
672
673
674
675
676
677
678
679
680
681
682
683
684
685
686
687
688
689
690
691
692
693
694
695
696
697
698
699
700
701
702
703
704
705
706
707
708
709
710
711
712
713
714
715
716
717
718
719
720
721
722
723
724
725
726
727
728
729
730
731
732
733
734
735
736
737
738
739
740
741
742
743
744
745
746
747
748
749
750
751
752
753
754
755
756
757
758
759
760
761
762
763
764
765
766
767
768
769
770
771
772
773
774
775
776
777
778
779
780
781
782
783
784
785
786
787
788
789
790
791
792
793
794
795
796
797
798
799
800
801
802
803
804
805
806
807
808
809
810
811
812
813
814
815
816
817
818
819
820
821
822
823
824
825
826
827
828
829
830
831
832
833
834
835
836
837
838
839
840
841
842
843
844
845
846
847
848
849
850
851
852
853
854
855
856
857
858
859
860
861
862
863
864
865
866
867
868
869
870
871
872
873
874
875
876
877
878
879
880
881
882
883
884
885
886
887
888
889
890
891
892
893
894
895
896
897
898
899
900
901
902
903
904
905
906
907
908
909
910
911
912
913
914
915
916
917
918
919
920
921
922
923
924
925
926
927
928
929
930
931
932
933
934
935
936
937
938
939
940
941
942
943
944
945
946
947
948
949
950
951
952
953
954
955
956
957
958
959
960
961
962
963
964
965
966
967
968
969
970
971
972
973
974
975
976
977
978
979
980
981
982
983
984
985
986
987
988
989
990
991
992
993
994
995
996
997
998
999
1,000
1,001
1,002
1,003
1,004
1,005
1,006
1,007
1,008
1,009
1,010
1,011
1,012
1,013
1,014
1,015
1,016
1,017
1,018
1,019
1,020
1,021
1,022
1,023
1,024
1,025
1,026
1,027
1,028
1,029
1,030
1,031
1,032
1,033
1,034
1,035
1,036
1,037
1,038
1,039
1,040
1,041
1,042
1,043
1,044
1,045
1,046
1,047
1,048
1,049
1,050
1,051
1,052
1,053
1,054
1,055
1,056
1,057
1,058
1,059
1,060
1,061
1,062
1,063
1,064
1,065
1,066
1,067
1,068
1,069
1,070
1,071
1,072
1,073
1,074
1,075
1,076
1,077
1,078
1,079
1,080
1,081
1,082
1,083
1,084
1,085
1,086
1,087
1,088
1,089
1,090
1,091
1,092
1,093
1,094
1,095
1,096
1,097
1,098
1,099
1,100
1,101
1,102
1,103
1,104
1,105
1,106
1,107
1,108
1,109
1,110
1,111
1,112
1,113
1,114
1,115
1,116
1,117
1,118
1,119
1,120
1,121
1,122
1,123
1,124
1,125
1,126
1,127
1,128
1,129
1,130

Match case Limit results 1 per page

916

Security

www.dell.com | support.dell.com

Parameters

Default

Not configured (that is, no authentication is performed)

Command Modes

CONFIGURATION

Command

History

Usage

Information

By default, the locally configured

username password

will be used. If

aaa authentication login

default

is configured, FTOS will use the methods defined by this command for login instead.

Methods configured with the

aaa authentication login

command are evaluated in the order they are

configured. If users encounter an error with the first method listed, FTOS applies the next method

configured. If users fail the first method listed, no other methods are applied. The only exception is the

local

method. If the user’s name is not listed in the local database, the next method is applied. If the

correct user name/password combination are not entered, the user is not allowed access to the switch.

After configuring the

aaa authentication login

command, configure the

command

to enable the authentication scheme on terminal lines.

Connections to the SSH server will work with the following login mechanisms: local, radius and

tacacs.

method-list-name

Enter a text string (up to 16 characters long) as the name of a user-configured

method list that can be applied to different lines.

default

Enter the keyword

default

to specify that the method list specified is the default

method for all terminal lines.

method

Enter one of the following methods:

•

enable

- use the password defined by the

enable password

command in the

CONFIGURATION mode.

•

line

- use the password defined by the

password

command in the LINE

mode.

•

local

- use the user name/password defined by the in the local configuration.

•

none

- no authentication.

•

radius

- use the RADIUS server(s) configured with the

radius-server host

command.

•

tacacs+

- use the TACACS+ server(s) configured with the

tacacs-server

host

command.

...

method4

(OPTIONAL) Enter up to four additional methods. In the event of a “no

response” from the first method, FTOS applies the next configured method (up

to four configured methods).

Version 8.3.5.0

Introduced on S55

Version 7.6.1.0

Introduced for S-Series

Version 7.5.1.0

Introduced for C-Series

pre-Version 6.2.1.0

Introduced on E-Series

Note:

If authentication fails using the primary method, FTOS employs the second method (or

third method, if necessary) automatically. For example, if the TACACS+ server is reachable,

but the server key is invalid, FTOS proceeds to the next authentication method. The

TACACS+ is incorrect, but the user is still authenticated by the secondary method.