Thanks Victor. This has been done through the GUI, I verified and the command is the same.
Here is my challenge now. We have already enabled TACACS authentication for the IAP-225 box, and the TACACS authentication superseeds the local authentication configured.
Is there any solution to this? As our local authentication which is used for Guest provisioning is unable to login due to this TACACS superseeding.