What is in method list ?

Unanswered Question
Nov 14th, 2001
User Badges:

Dear all,

if i use the command

aaa authentication ppp default tacacs+

what would the default method list contains ?, would it be username ?

is the default method list correspond to the default user group on the ACS ?

how do you create and associate a method list to users?

thank you in advance,

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
msitzman Thu, 11/15/2001 - 09:27
User Badges:

The method list is the defined ways that you will try to authenticate/authorize/account for your users. In the example you list above, your method list contains tacacs+. Since you used the keyword default, this method list will be applied to any ppp connections terminating on this router. If you would have used a name, say dial-up, you would have to manually apply the method list to each interface for the ppp connections.

Sometimes the tacacs+ server is not available and you do not want to just disconnect the user without trying some other way to authenticate the user. The following example will try tacacs+ first, then RADIUS, then local for authentication.

aaa authentication ppp default tacacs+ radius local

If tacacs+ returns a "error" message, it will move to the next method. It will not go to the next method if it returns "fail".

Hope this helps...

fsusanto Sun, 11/18/2001 - 23:39
User Badges:

So there is no connection between a method list and usernames ?

where do i define this method list ?

suppose i use

aaa authentication login default tacacs+

aaa authentication login engineer local

where do i define engineer method list ?


This Discussion