Home » Dell Manuals » Servers » Dell S6000 » Manual Viewer

Dell S6000 FTOS 9.0(2.0) Command Line Reference Guide for the System - Page 815

aaa authentication enable

Add to My Manuals
Save this manual to your list of manuals

Page 815 highlights

aaa authentication enable z S6000 Configure AAA Authentication method lists for user access to the EXEC Privilege mode (the "Enable" access). Syntax aaa authentication enable {default | method-list-name} method [... method2] To return to the default setting, use the no aaa authentication enable {default | method-list-name} method [... method2] command. Parameters default method-list-name method ... method2 Enter the keyword default followed by the authentication methods to use as the default sequence of methods to be used for the Enable log-in. Default: default enable Enter a text string (up to 16 characters long) to name the list of enabled authentication methods activated at log in. Enter one of the following methods: • enable - use the password defined by the enable password command in the CONFIGURATION mode. • line - use the password defined by the password command in the LINE mode. • none - no authentication. • radius - use the RADIUS server(s) configured with the radius-server host command. • tacacs+ - use the TACACS+ server(s) configured with the tacacs-server host command. (OPTIONAL) In the event of a "no response" from the first method, FTOS applies the next configured method. Defaults Use the enable password. Command Modes CONFIGURATION Command History Version 9.0.2.0 Version 8.3.11.1 Introduced on the S6000. Introduced on Z9000 Usage Information By default, the Enable password is used. If aaa authentication enable default is configured, FTOS will use the methods defined for Enable access instead. Methods configured with the aaa authentication enable command are evaluated in the order they are configured. If authentication fails using the primary method, FTOS employs the second method (or third method, if necessary) automatically. For example, if the TACACS+ server is reachable, but the server key is invalid, FTOS proceeds to the next authentication method. The TACACS+ is incorrect, but the user is still authenticated by the secondary method. Related Commands enable password login authentication password radius-server host tacacs-server host Change the password for the enable command. Enable AAA login authentication on terminal lines. Create a password. Specify a RADIUS server host. Specify a TACACS+ server host. Security | 815

Section	Page
About this Guide	11
Objectives	11
Audience	11
Conventions	11
Information Symbols	12
Related Documents	12
CLI Basics	13
Accessing the Command Line	13
Multiple Configuration Users	14
Navigating the Command Line Interface	14
Obtaining Help	15
Using the Keyword No	17
Filtering show Commands	17
Displaying All Output	18
Filtering Command Output Multiple Times	18
Command Modes	18
EXEC Mode	19
EXEC Privilege Mode	19
CONFIGURATION Mode	19
INTERFACE Mode	19
LINE Mode	20
TRACE-LIST Mode	20
MAC ACCESS LIST Mode	20
IP ACCESS LIST Mode	21
ROUTE-MAP Mode	21
PREFIX-LIST Mode	21
AS-PATH ACL Mode	21
IP COMMUNITY LIST Mode	22
REDIRECT-LIST Mode	22
SPANNING TREE Mode	22
Per-VLAN SPANNING TREE Plus Mode	22
RAPID SPANNING TREE Mode	23
MULTIPLE SPANNING TREE Mode	23
PROTOCOL GVRP Mode	23
ROUTER OSPF Mode	23
ROUTER RIP Mode	24
ROUTER BGP Mode	24
Determining the Chassis Mode	24
File Management	25
Overview	25
Basic File Management Commands	25
Control and Monitoring	43
Overview	43
Commands	43
802.1X	95
Important Points to Remember	96
Access Control Lists (ACL)	111
Overview	111
Commands Common to all ACL Types	111
Common IP ACL Commands	113
Standard IP ACL Commands	117
Extended IP ACL Commands	123
Common MAC Access List Commands	139
Standard MAC ACL Commands	142
Extended MAC ACL Commands	145
IP Prefix List Commands	150
IPv6 ACL Commands	155
Route Map Commands	176
Boot Command Line Interface (BCLI)	195
Overview	195
Commands	195
Bidirectional Forwarding Detection (BFD)	205
Overview	205
Commands	205
Border Gateway Protocol	209
Overview	209
BGP IPv4 Commands	210
MBGP Commands	287
BGP Extended Communities (RFC 4360)	289
IPv6 BGP Commands	298
IPv6 MBGP Commands	299
Bare Metal Provisioning	301
Overview	301
Commands	301
Content Addressable Memory (CAM)	305
Overview	305
CAM Profile Commands	305
Important Points to Remember	305
Control Plane Policing (CoPP)	311
Overview	311
Commands	311
Data Center Bridging (DCB)	317
Overview	317
DCB Command	317
PFC Commands	317
ETS Commands	317
DCBX Commands	318
Debugging and Diagnostics	341
Overview	341
Diagnostics and Monitoring Commands	341
Offline Diagnostic Commands	344
Important Points to Remember	344
Hardware Commands	347
Dynamic Host Configuration Protocol (DHCP)	357
Overview	357
Commands to Configure the System to be a DHCP Server	357
Commands to Configure Secure DHCP	365
Equal Cost Multi-Path	373
Overview	373
Commands	373
Force10 Resilient Ring Protocol (FRRP)	381
Overview	381
Commands	381
Important Points to Remember	381
GARP VLAN Registration (GVRP)	389
Overview	389
Commands	389
Important Points to Remember	390
Internet Group Management Protocol (IGMP)	399
Overview	399
IGMP Commands	399
Important Points to Remember	399
IGMP Snooping Commands	409
Important Points to Remember for IGMP Snooping	409
Important Points to Remember for IGMP Querier	409
Interfaces	415
Overview	415
Basic Interface Commands	415
Port Channel Commands	458
IPv4 Routing	467
Overview	467
Commands	467
Link Aggregation Control Protocol (LACP)	509
Overview	509
Commands	509
Intermediate System to Intermediate System (IS-IS)	515
Overview	515
Commands	515
Layer 2	561
Overview	561
MAC Addressing Commands	561
Virtual LAN (VLAN) Commands	572
Far-End Failure Detection (FEFD)	580
Commands	580
Link Layer Detection Protocol (LLDP)	585
Overview	585
Commands	585
LLDP-MED Commands	594
Multicast Source Discovery Protocol (MSDP)	603
Overview	603
Commands	603
Multiple Spanning Tree Protocol (MSTP)	615
Overview	615
Commands	615
Multicast	629
Overview	629
IPv4 Multicast Commands	629
Open Shortest Path First (OSPFv2)	635
Overview	635
OSPFv2 Commands	635
PIM-Sparse Mode (PIM-SM)	689
Overview	689
IPv4 PIM-Sparse Mode Commands	689
PIM-Source Specific Mode (PIM-SSM)	703
Overview	703
IPv4 PIM-Source Specific Mode Commands	703
Port Monitoring	705
Overview	705
Commands	705
Important Points to Remember	705
Private VLAN (PVLAN)	711
Overview	711
Commands	711
Private VLAN Concepts	711
Per-VLAN Spanning Tree Plus (PVST+)	721
Overview	721
Commands	721
Quality of Service (QoS)	733
Overview	733
Global Configuration Commands	733
Per-Port QoS Commands	736
Policy-Based QoS Commands	740
Router Information Protocol (RIP)	767
Overview	767
Commands	767
Remote Monitoring (RMON)	785
Overview	785
Commands	785
Rapid Spanning Tree Protocol (RSTP)	797
Overview	797
Commands	797
Security	807
Overview	807
Commands	807
AAA Accounting Commands	807
Authorization and Privilege Commands	810
Authentication and Password Commands	814
RADIUS Commands	825
TACACS+ Commands	830
Port Authentication (802.1X) Commands	833
Important Points to Remember	834
SSH Server and SCP Commands	842
Secure DHCP Commands	854
Service Provider Bridging	859
Overview	859
Commands	859
Important Points to Remember	859
sFlow	865
Overview	865
Important Points to Remember	865
Commands	866
Simple Network Management Protocol and Syslog	873
Overview	873
SNMP Commands	873
Important Points to Remember	874
Syslog Commands	889
Storm Control	903
Overview	903
Commands	903
Important Points to Remember	903
Spanning Tree Protocol (STP)	911
Overview	911
Commands	911
System Time and Date	921
Overview	921
Commands	921
VLAN Stacking	937
Overview	937
Commands	937
Important Points to Remember	937
Virtual Router Redundancy Protocol (VRRP)	947
Overview	947
Commands	947
ICMP Message Types	961

Match case Limit results 1 per page

Security

815

aaa authentication enable

Configure AAA Authentication method lists for user access to the EXEC Privilege mode (the “Enable”

access).

Syntax

aaa authentication enable {default |

method-list-name

}

method

[

...

method2

]

To return to the default setting, use the no aaa authentication enable {default |

method-list-name

}

method

[

...

method2

] command.

Parameters

Defaults

Use the enable password.

Command Modes

CONFIGURATION

Command History

Usage Information

By default, the Enable password is used. If aaa authentication enable default is configured, FTOS will

use the methods defined for Enable access instead.

Methods configured with the aaa authentication enable command are evaluated in the order they are

configured. If authentication fails using the primary method, FTOS employs the second method (or

third method, if necessary) automatically. For example, if the TACACS+ server is reachable, but the

server key is invalid, FTOS proceeds to the next authentication method. The TACACS+ is incorrect,

but the user is still authenticated by the secondary method.

Commands

S6000

default

Enter the keyword

default

followed by the authentication methods to use as

the default sequence of methods to be used for the Enable log-in.

Default:

default enable

method-list-name

Enter a text string (up to 16 characters long) to name the list of enabled

authentication methods activated at log in.

method

Enter one of the following methods:

•

enable

- use the password defined by the

enable password

command in the

CONFIGURATION mode.

•

line

- use the password defined by the

password

command in the LINE

mode.

•

none

- no authentication.

•

radius

- use the RADIUS server(s) configured with the

radius-server host

command.

•

tacacs+

- use the TACACS+ server(s) configured with the

tacacs-server

host

command.

...

method2

(OPTIONAL) In the event of a “no response” from the first method, FTOS

applies the next configured method.

Version 9.0.2.0

Introduced on the S6000.

Version 8.3.11.1

Introduced on Z9000

enable password

Change the password for the

enable

command.

Enable AAA login authentication on terminal lines.

password

Create a password.

radius-server host

Specify a RADIUS server host.

tacacs-server host

Specify a TACACS+ server host.