If you have multiple authenticators configured on your login console rule(s) (or ssh), then you can specify the authenticator you want to use when logging in.Just like in the GUI you can select 'password' as the authenticator instead of radius.
At the login prompt you just type:
So if I wanted to force my login to use the password authenticator (and I have a rule that allows password authentication) I would type 'username:password' at the login prompt. It will always default to the first authenticator.
Let me know if you still have trouble getting this to work. It is also outlined in the administration guide