Hello,
a local username and password in combination with a fallback to local should prevent any lockout:
username username password password
aaa authentication login default group radius local
Additonally, you can configure the console and/or vty to use a predefined password:
aaa authentication login CONSOLE line
line con 0
exec-timeout 0 0
password password
login authentication CONSOLE
Or use the locally defined username and password to authenticate:
aaa authentication login CONSOLE local