To enable AAA authentication for ARA on a line, use the arap authentication line configuration command. Use the no form of the command to disable authentication for an ARA line.
arap authentication {default | list-name} [one-time ]
no arap authentication {default | list-name}
 | Caution If you use a list-name value that was not configured with the aaa authentication arapcommand, ARA protocol will be disabled on this line. |
default Default list created with the aaa authentication arapcommand.
list-name Indicated list created with the aaa authentication arapcommand .
one-time (Optional) Accepts the username and password in the username field.
ARA protocol authentication uses the default set with aaa authentication arapcommand. If no default is set, the local user database is checked.
Line configuration
| Release | Modification | 10.3 | This command was introduced. |
11.0 | The one-time keyword was added. |
|---|
This command is a per-line command that specifies the name of a list of AAA authentication methods to try at login. If no list is specified, the default list is used (whether or not it is specified in the command line). You create defaults and lists with the aaa authenticationarap command. Entering the no version of arap authentication has the same effect as entering the command with the default keyword.
Before issuing this command, create a list of authentication processes by using the aaa authenticationarapglobal configuration command.
The following example specifies that the TACACS+ authentication list called MIS-access is used on ARA line 7:
line 7 arap authentication MIS-access
| Command | Description |
|---|---|
| aaa authentication arap | Enables an AAA authentication method for ARA using TACACS+. |
Printed for apswan@ctr.ap.nic.in on Wed Mar 5 22:32:57 PST 2003
All material in this document copyright 2000 Cisco Systems, Inc. All rights reserved. No material may be reproduced or distributed without written permission of Cisco Systems, Inc.