D-Link DS-3550 Command Line Interface Reference Manual - page 174
166
config authen_login
Purpose
Used to configure a user-defined or default method list of
authentication methods for user login.
Syntax
config authen_login [default | method_list_name
method {tacacs | xtacacs | tacacs+ | server_group
local | none}
Description
This command will configure a user-defined or default method list of
authentication methods for users logging on to the switch. The
sequence of methods implemented in this command will affect the
authentication result. For example, if a user enters a sequence of
methods like tacacs – xtacacs – local, the switch will send an
authentication request to the first tacacs host in the server group. If
no response comes from the server host, the switch will send an
authentication request to the second tacacs host in the server
group and so on, until the list is exhausted. At that point, the switch
will restart the same sequence with the following protocol listed,
xtacacs. If no authentication takes place using the xtacacs list, the
local account database set in the switch is used to authenticate the
user. When the local method is used, the priviledge level will be
dependant on the local account priveledge configured on the
switch.
Successful login using any of these methods will give the user a
“user” priviledge only. If the user wishes to upgrade his or her
status to the administrator level, the user must implement the
enable admin command, followed by a previously configured
password. (See the enable admin part of this section for more
detailed information, concerning the enable admin command.)
Parameters
default – The default method list for access authentication, as
defined by the user. The user may choose one or a combination of
up to four (4) of the following authentication methods:
tacacs – Adding this parameter will require the user to be
authenticated using the tacacs protocol from the remote
tacacs server hosts of the tacacs server group list.
xtacacs – Adding this parameter will require the user to be
authenticated using the xtacacs protocol from the remote
xtacacs server hosts of the xtacacs server group list.
tacacs+ – Adding this parameter will require the user to be
authenticated using the tacacs protocol from the remote
tacacs+ server hosts of the tacacs+ server group list.
server_group
require the user to be authenticated using a user-defined
server group previously configured on the switch.
local - Adding this parameter will require the user to be
authenticated using the local user account database on
the switch.
none – Adding this parameter will require no
authentication to access the switch.
method_list_name – Enter a previously implemented method list