MANAGEMENT-POLICY 17 - 3
17.1.1 aaa-login
management-policy
Configures the current authentication, authorization and accounting (aaa) login settings
Supported in the following platforms:
• RFS7000
• RFS6000
• RFS4000
• AP71xx
• AP650
• AP6511
• AP6532
Syntax
aaa-login [local|radius]
aaa-login radius [external|fallback|server]
aaa-login radius server host <A.B.C.D> secret [0|2] <WORD> {attempts
<1-10>|time-out <1-60>|udp-port <0-65536>}
Parameters
Usage Guidelines
Use an AAA login to determine whether management user authentication must be performed against a local user database
or an external RADIUS server
Example
rfs7000-37FABE(config-management-policy-default)#aaa-login radius radius-server host
172.16.10.9 udp-port 3
rfs7000-37FABE(config-management-policy-default)#
local Sets local authentication
radius [external|fallback|
server]]
Configures an external RADIUS server
• external – Requires external RADIUS authentication
• fallback – Attempts external RADIUS authentication, uses local
authentication when failed
• server host <A.B.C.D> secret [0|2] <WORD> {attempts <1-10>
|time-out <1-60> | udp-port <0-65536>} – Defines an external RADIUS
server
• host – Sets the IP address of RADIUS server to configure
• <A.B.C.D> – Specify the IP address of RADIUS server to configure
• secret [0|2] <WORD> – Enter a clear text secret
• 0 – Password is encrypted with secret
• 2 – Password is UNENCRYPTED
• <WORD> – Enter text of shared secret, up to 127 characters
• attempts <1-10> – Specifies the number of attempts to
connect to RADIUS server
• timeout <1-60> – Specify the timeout value between 1and 60
seconds for the server’s response
• udp-port <0-65536> – Specify the UDP port number for the
RADIUS server. The default port is 1812
Comments to this Manuals