Skip to main content
Viptela is now part of Cisco.
Support
Product Documentation
Viptela Documentation

aaa

system aaa—Configure role-based access to a Viptela device using authentication, authorization, and accounting.

vManage Feature Template

For all Viptela devices:

Configuration ► Templates ► AAA

Command Hierarchy

system
  ​aaa
    admin-auth-order
    auth-fallback
    auth-order (local | radius | tacacs)
    logs
      [no] audit-disable
      [no] netconf-disable
    radius-servers tag
    user username      
      group group-name      
      password password    
    usergroup group-name      
      task (interface | policy | routing | security | system) (read | write)

Options

None

Operational Commands

show aaa usergroup
show users

Example

Configure a user whose role is to be a system operator, a role that allows the user only to view information about the device, providing no authorization to modify anything:

vEdge# config
Entering configuration mode terminal
vEdge(config)# system aaa
 vEdge(config-aaa)# user eve   
vEdge(config-user-eve)# password 123456
vEdge(config-user-eve)# group operator
vEdge(config-user-eve)# exit
vEdge(config-aaa)# show configuration 
system
 aaa
  user eve
   password $1$aLEJ6jve$aBpPQpkl3h.SvA2dt4/6E/
   group    operator
  !
 !
!
vEdge(config-aaa)# commit and-quit
Commit complete.
vEdge# show running-config system aaa
system
 aaa
  auth-order local radius
  usergroup basic
   task system read write
   task interface read write
  !
  usergroup netadmin
  !
  usergroup operator
   task system read
   task interface read
   task policy read
   task routing read
   task security read
  !
  user admin
   password $1$zvOh58pk$QLX7/RS/F0c6ar94.xl2k.
  !
  user eve
   password $1$aLEJ6jve$aBpPQpkl3h.SvA2dt4/6E/
   group    operator
  !
 !
!

Release Information

Command introduced in Viptela Software Release 14.1.

Additional Information

See the Configuring User Access and Authentication and Role-Based Access with AAA articles for your software release.
dot1x
radius
tacacs

  • Was this article helpful?