In a given session, this specifies how many tries at entering the correct user name and password pair are allowed before access is denied and the session terminated. To address this situation, configuring the authorized secondary authentication method allows users unconditional access to the network when the primary authentication method fails because the RADIUS servers are unreachable. Users are not able to access the network resources configured with RADIUS access protection and are rejected. In certain situations, RADIUS servers can become isolated from the network. This prevents the possibility of being completely locked out of the switch in the event all primary access methods fail. For console access, if you configure RADIUS or TACACS for primary authentication, you must configure local for the secondary method. Select either local, none or authorized as a secondary or backup method. You can configure RADIUS as the primary password authentication method for all access methods. The authorized option allows access without authentication. The none option specifies that a backup authentication method is not used. Provides options for secondary authentication.