Local authentication tasks

The local authentication (local password and SSH public key) tasks are as follows. Simple tasks link to the relevant command description.

Task Command or procedure Example
Enable authentication as local for the specified connection types aaa authentication login Enable local authentication for the default and console connection types:
aaa authentication login default local
aaa authentication login console local
Show authentication configuration show aaa authentication
show aaa authentication
Enable password-based authentication minimum password length checking aaa authentication minimum-password-length
aaa authentication minimum-password-length 12
Disable password-based authentication minimum password length checking aaa authentication minimum-password-length
no aaa authentication minimum-password-length
Enable local password-based authentication login attempt limiting aaa authentication limit-login-attempts
aaa authentication limit-login-attempts 4 lockout-time 20
Disable local password-based authentication login attempt limiting aaa authentication limit-login-attempts
no aaa authentication limit-login-attempts
Enable local password-based authentication for use with SSH clients (enabled by default) ssh password-authentication
ssh password-authentication
Disable local password-based authentication for use with SSH clients ssh password-authentication
no ssh password-authentication
Enable SSH public key authentication (enabled by default) ssh public-key-authentication
ssh public-key-authentication
Disable SSH public key authentication ssh public-key-authentication
no ssh public-key-authentication
Show state of local password-based (for SSH) and SSH public key authentication show ssh authentication-method
show ssh authentication-method
Copying the client SSH public key into the key list user authorized-key
user admin authorized-key ecdsa-sha2-nistp256 E2VjZH...QUiCAk= root@switch
Removing SSH public keys from the key list user authorized-key
no user admin authorized-key 2
Showing the SSH client public key list show user
show user admin authorized-key