11-06-2006 11:05 AM - edited 03-05-2019 12:38 PM
I try to implement this command on the router:
!
Sun3(config)# radius-server host 10.1.1.1
Sun3(config)# radius-server key abc
Sun3(config)# aaa new-model
Sun3(config)#aaa authentication login AAA group radius local none
What is the none mean :
It means :
1) user can log in if the radius server fail
2) user can NOT log in if the radius server fail
3) the radius server need authentication with the router.
Thanks
11-06-2006 11:14 AM
Henry
In the way that you have configured it the router will first attempt to authenticate to the radius server. If there is an error in authenticating with the radius server (an error response not a negative response) then it will attempt to authenticate with a locally configured userID and password. If there is an error in this attempt (an error not a negative response) then the none comes into effect and the user will be authenticated.
HTH
Rick
11-06-2006 11:55 AM
Henry,
As Rick stated the order of authentication is Radius -> then local login (username/password) configured in the router --> then none. Hence, the answer to your question is #1, "user can log in if the radius server fail".
Important thing to remember here is authentication error (server unavailable) is different from authentication failure (incorrect login credentials). Since the question states the radius server fails the answer is #1.
HTH
Sundar
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide