aaa authentication enable default

Syntax

aaa authentication enable default authenticator [ authenticator ]*

no aaa authentication enable default

Release Information

Command introduced before JunosE Release 7.1.0.

Description

Allows privilege determination to be authenticated through the authenticator(s) you specify (TACACS+ or RADIUS server). This command specifies a list of authentication methods that are used to determine whether a user is granted access to the privilege command level. This authentication is applied to vty users. Requests sent to a TACACS+ or RADIUS server include the username that is entered for login authentication. If the authentication method list is empty, the local enable password is used. To specify that the authentication should succeed even if all methods return an error, specify none as the final method in the command line. The no version removes the authentication settings.

Options

• authenticator—Authentication method:
  • enable—Use the enable password
  • line—Use the line password
  • none—Use no authentication
  • radius—Use RADIUS authentication
  • tacacs+—Use TACACS+ authentication
  • *—Indicates that one or more parameters can be repeated multiple times in a list in the command line

Mode

Global Configuration

Related Documentation

• Understanding TACACS+
• Configuring TACACS+