Disclaimer:

Please forgive my explanation, as I am a long time Brocade SAN Admin who is new to working with MDS Switches. I have done some searching and research at Google University but haven't found much yet. I also have an ongoing incident opened with our support provider (EMC).

Issue:

We have two MDS 9513 switches in our SAN that are currently configured for local login and all the admins and processes use the same local account to login. I am working on only one switch currently to do my testing, while the other remains available for normal business functions.

I have been working on a project to get these switched over to LDAP authentication, which went very well. The problem is that the local fallback option doesn't seem to be working. I change to LDAP authentication and ensure fallback with these commands:

aaa authentication login default group LLB-LDAP

aaa authentication login default fallback error local

I am able to switch to LDAP authentication and login with my LDAP credentials without an issue. I can also connect via Console and login via Local Credentials, which is what we want. But if I disconnect MGMT0 and connect directly to my laptop I get the login prompt, but cannot login with Local or LDAP credentials.

Just to verify I had the process for connecting directly I changed the switch back to Local Authentication with the following command:

aaa authentication login default local

I then disconnected MGMT0 again and connected directly. This time I was able to login with my Local Credentials as I expected.

TLDR;

LDAP configuration works. Fallback doesn't. Have ruled out connection issues between laptop and switch.