Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1814
Views
0
Helpful
1
Replies

What exactly does "if-needed" do in the aaa authentication command?

colsen
Level 1
Level 1

‎08-16-2002 06:22 AM - edited ‎02-21-2020 10:02 AM

What exact role does the "if-needed" keyword play?

What does it do?

When does it matter? Not matter?

Url great also.

Labels:
0 Helpful
1 Reply 1

tepatel
Cisco Employee
Cisco Employee

‎08-16-2002 08:29 AM

"if-needed" generally used for authentication scheme..Let's say you want authentiction for PPP services and if user is authenticated for any other services (like EXEC or so) earlier (before starting PPP), with that keyword authentication will not be "needed" during PPP..

For exa--

aaa authentication ppp default if-needed group radius local

PPP authentication (for the list default) uses methods radius then local.

The if-needed keyword automatically permits ppp for users that have

successfully authenticated using exec mode. If the EXEC facility has

authenticated the user, RADIUS authentication for PPP is not performed.

This is necessary for clients that use terminal window after dial.

0 Helpful
Customers Also Viewed These Support Documents