Hi all,
I have setup my switches to authenticate with RADIUS and fall back to the local database in case of failure.
aaa new-model
aaa group server radius ADAAA
server-private 192.168.xx.xx key xxxxx
aaa authentication login default group ADAAA local
line vty 0 4
transport input ssh
login authentication default
What I want to be able to do however is to use a local account and password that is different from the AD account as a fallback in case RADIUS auth fails. For example, if I tried to login with an AD user account 'johndoe' with password 'john123' to authenticate via RADIUS, in case of failure I would want RADIUS to fall back to a local user account say 'admin' with password 'passadmin'. Is this possible?