Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
538
Views
1
Helpful
4
Replies

AAA Authentication

Go to solution
hs08
VIP
VIP

‎10-27-2024 08:47 PM

Hello,

I have radius group called ADRADIUS for centralize SSH login using Active Directory user.

Anyone know whay different between two command below? What different between WORD and default after login syntax?

aaa authentication login ADRADIUS local group ADRADIUS
aaa authentication login default local group ADRADIUS

hs08_0-1730087242480.png

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ammahend
VIP Alumni
VIP Alumni
In response to hs08

‎10-27-2024 09:58 PM - edited ‎10-27-2024 09:58 PM

If you use the default method list, it automatically applies to all lines unless a different method list is explicitly defined.

some admins will add the command "login authentication default" for clarity purposes but you don't have to

-hope this helps-

View solution in original post

4 Replies 4

Go to solution
ammahend
VIP Alumni
VIP Alumni

‎10-27-2024 09:03 PM

using "WORD" allows you to create custom authentication methods that can be applied to specific interfaces or lines (like console, vty lines, or other access methods). You can configure multiple named method lists and apply them selectively depending on where you want different authentication mechanisms.

using "default" you define global default authentication method for all lines or interfaces unless overridden by a named method list

-hope this helps-
0 Helpful

Go to solution
hs08
VIP
VIP
In response to ammahend

‎10-27-2024 09:17 PM

using "default" you define global default authentication method for all lines or interfaces

If we use "default", are we still need to issue command "login authentication default" on line vty for example?

0 Helpful

Go to solution
ammahend
VIP Alumni
VIP Alumni
In response to hs08

‎10-27-2024 09:58 PM - edited ‎10-27-2024 09:58 PM

If you use the default method list, it automatically applies to all lines unless a different method list is explicitly defined.

some admins will add the command "login authentication default" for clarity purposes but you don't have to

-hope this helps-

Go to solution
Cristian Matei
VIP Alumni
VIP Alumni
In response to hs08

‎10-30-2024 06:11 AM

Hi,

Nope, only if you use a named list (so not the default list). 

Best,

Cristian.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card