fallback-login

This command specifies whether to use local users if the primary authentication method fails.

Syntax

fallback-login { disabled | local | restricted }

Parameters

disabled: Indicates that no locally defined user can log on. This setting is the default value.
local: Indicates that all locally defined users can log on.
restricted: Indicates that only specific locally defined users can log on.

Guidelines

The fallback-login command indicates whether to use local user accounts as fallback users when the primary authentication method fails. With fallback users, locally defined users can log on to the appliance if the authentication method fails or in the event of a network outage that affects the primary authentication.

To limit fallback users to a specific set, use the restricted keyword. In this case, use the fallback-user command to define the specific, locally defined users to allow as fallback users.

The fallback-login command is relevant only when remote authentication. In other words, this command is relevant when the setting for the au-method is any value except local.

Note: On XI50z, this option is local. No administrator can modify this setting.

Examples

Allow all locally defined users to log on.
```
# fallback-login local
```

Designate bobsmith and joselopez as fallback users.

# fallback-login restricted
# fallback-user bobsmith
# fallback-user joselopez

Disallow all locally defined users from logging on.
```
# fallback-login disabled
```