Limit wri erase from TELNET only

Unanswered Question
Feb 17th, 2008
User Badges:

Can I configure an ACS to limit the commands available to Telnet sessions without affecting console commands. I.E. I want to stop commands such as WRI ERASE from being run from Telnet

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Mon, 02/18/2008 - 02:28
User Badges:
  • Green, 3000 points or more

You can either remove the AAA authentication & Authorization from the console or define 2 seperate aaa groups on the device, one for console and one for telnet.

The commands can then be resticted/made available as required


r404827 Wed, 02/20/2008 - 14:19
User Badges:


Thanks, I realy do not want to remove AAA from the console port.

When you say define two seperate gropups on the device, is this the router / switch or the ACS box. Sorry I am new to AAA configs.

Kind Regards



This Discussion