Command Manual (For Soliton) – Login
H3C S3100 Series Ethernet Switches
Chapter 1 Login Commands
1-1
Chapter 1 Login Commands
1.1 Login Commands
1.1.1 authentication-mode
Syntax
authentication-mode
{
password
|
scheme
[
command-authorization
] |
none
}
View
User interface view
Parameters
none
: Specifies not to authenticate users.
password
: Authenticates users using the local password.
scheme
: Authenticates users locally or remotely using usernames and passwords.
command-authorization
: Performs command authorization on TACACS
authentication server.
Description
Use the
authentication-mode
command to specify the authentication mode.
z
If you specify the
password
keyword to authenticate users using the local
password, remember to set the local password using the
set authentication
password
command. Otherwise, AUX users can log in to the switch successfully
without password, but VTY users will fail the login. VTY users must enter the
correct authentication password to log in to the switch.
z
If you specify the
scheme
keyword to authenticate users locally or remotely using
usernames and passwords, the actual authentication mode, that is, local or
remote, depends on other related AAA scheme configuration of the domain.
z
If this command is executed with the
command-authorization
keyword specified,
authorization is performed on the TACACS server whenever you attempt to
execute a command, and the command can be executed only when you pass the
authorization. Normally, a TACACS server contains a list of the commands
available to different users.
By default, the authentication mode is
none
for AUX users and
password
for VTY
users.