Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
539
Views
0
Helpful
1
Replies

default password for when the server is unreachable

Go to solution
jhalliwell
Level 1
Level 1

‎02-04-2008 02:05 AM - edited ‎03-10-2019 03:38 PM

Hi I have recently configured AAA. when the server is running everything is fine but when the server is unreachable i'm locked out. How can I put a default username and password on for when the server is unreachable

Thanks

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Richard Burts
Hall of Fame
Hall of Fame

‎02-04-2008 04:41 AM

James

There are several ways to configure AAA so that you are not locked out if the server is not available. You can use a locally configured user name, as you suggest here, or you can use the configured line passwords.

To use a locally configured user your configuration might look something like this:

user rick password cisco

aaa authentication login default group tacacs+ local

Or to use the line passwords as a backup your config might look something like this:

aaa authentication login default group tacacs+ line

You also probably need a backup for access to privilege mode. This is usually done using the locally configured enable secret. To do this the configuration might look something like this:

aaa authentication enable default group tacacs+ enable

HTH

Rick

HTH

Rick

View solution in original post

0 Helpful
1 Reply 1

Go to solution
Richard Burts
Hall of Fame
Hall of Fame

‎02-04-2008 04:41 AM

James

There are several ways to configure AAA so that you are not locked out if the server is not available. You can use a locally configured user name, as you suggest here, or you can use the configured line passwords.

To use a locally configured user your configuration might look something like this:

user rick password cisco

aaa authentication login default group tacacs+ local

Or to use the line passwords as a backup your config might look something like this:

aaa authentication login default group tacacs+ line

You also probably need a backup for access to privilege mode. This is usually done using the locally configured enable secret. To do this the configuration might look something like this:

aaa authentication enable default group tacacs+ enable

HTH

Rick

HTH

Rick
0 Helpful
Customers Also Viewed These Support Documents