Limit wri erase from TELNET only

Unanswered Question
Feb 17th, 2008

Can I configure an ACS to limit the commands available to Telnet sessions without affecting console commands. I.E. I want to stop commands such as WRI ERASE from being run from Telnet

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
royalblues Mon, 02/18/2008 - 02:28

You can either remove the AAA authentication & Authorization from the console or define 2 seperate aaa groups on the device, one for console and one for telnet.

The commands can then be resticted/made available as required

Narayan

r404827 Wed, 02/20/2008 - 14:19

Hi

Thanks, I realy do not want to remove AAA from the console port.

When you say define two seperate gropups on the device, is this the router / switch or the ACS box. Sorry I am new to AAA configs.

Kind Regards

Paul

Actions

This Discussion