Specify the authentication method and order and configure Radius, TACACs, or local authentication, including local user groups with different read/write permissions.
Name Type Constraint Mandatory Default Value aaa Class [aaa]No
Name Type Constraint Mandatory Default Value name String Regex: ^[^&<>! "]{1,128}$ No aaadescription String No accounting_rules List [accounting_rules]No auth_order List String[min: 1, max: 220] No authorization_config_commands Boolean true, falseNo authorization_config_commands_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No authorization_console Boolean true, falseNo authorization_console_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No authorization_rules List [authorization_rules]No dot1x_accounting Boolean true, falseNo dot1x_accounting_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No dot1x_authentication Boolean true, falseNo dot1x_authentication_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No radius_groups List [radius_groups]No tacacs_groups List [tacacs_groups]No users List [users]Yes
Name Type Constraint Mandatory Default Value groups List String[min: 1, max: 32] Yes id String max: 32 Yes level Choice 1, 15No method Choice commands, exec, network, systemYes start_stop Boolean true, falseNo start_stop_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No
Name Type Constraint Mandatory Default Value authenticated Boolean true, falseNo groups List String[min: 1, max: 32] Yes id String max: 32 Yes level Choice 1, 15No method Choice commandsYes
Name Type Constraint Mandatory Default Value servers List [servers]Yes source_interface String max: 32 No source_interface_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No vpn Integer min: 0, max: 65530 No
Name Type Constraint Mandatory Default Value servers List [servers]Yes source_interface String max: 32 No source_interface_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No vpn Integer min: 0, max: 65530 No
Name Type Constraint Mandatory Default Value name String min: 1, max: 64 No name_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No password String No password_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No privilege Choice 1, 15No privilege_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No public_key_chains List String[Regex: ^AAAA[0-9A-Za-z+/]+[=]{0,3}$] No
Name Type Constraint Mandatory Default Value accounting_port Integer min: 1, max: 65534 No accounting_port_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No address IP Yes authentication_port Integer min: 1, max: 65534 No authentication_port_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No key String min: 1 Yes key_type Choice key, pacNo key_type_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No retransmit Integer min: 1, max: 100 No retransmit_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No secret_key String min: 1, max: 150 No secret_key_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No timeout Integer min: 1, max: 1000 No timeout_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No
Name Type Constraint Mandatory Default Value address IP Yes key String min: 1 Yes port Integer min: 1, max: 65535 No port_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No secret_key String min: 1, max: 150 Yes timeout Integer min: 1, max: 1000 No timeout_variable String Regex: ^[./\[\]a-zA-Z0-9_-]{1,64}$ No
source_interface_variable : tacacs_source_interface
key : $CRYPT_CLUSTER$jq34CKAzT5KGdEjIpYarKg==$MZkY/AdOWzm/kiLHOsKHJg==
secret_key : 070c285f4d06485744
key : $CRYPT_CLUSTER$jq34CKAzT5KGdEjIpYarKg==$MZkY/AdOWzm/kiLHOsKHJg==
secret_key : 070c285f4d06485744
password : $6$Oz2ydqNXLLDIsPSG$LhogoactFVb9eJgqgv/O/Zb.FHg74drK4maijc.Q9q/KhyDcPfwrHx9Vy6G9hY7oKWbyas4XKms7f7Znl/ndF.
password : $6$v0UN8x4fkvZd0Lnj$hq13MC.W5ElstGlolO38fshGEYxSechW4K5zEdrJD1trSH30AaNKvL4VUlOtxersGmIDNefPwyrSqbJpCpXGJ.
