SSH Central User Accounts

Answered Question
Aug 6th, 2008

I have 3 switches a (1)3550, (2)2960 that are trunked with VLANs. I have SSH on configured on one of the 2960 with a username and password. I would like to remove the SSH config on the 2960 switch and put it on the 3550 and use the 3550 as the central location for all the usernames that are created so that there is only one logon and password for all three.

Is that possible with the equipment I currently have or do I just need to configure them individually?

I have this problem too.
0 votes
Correct Answer by dhananjoy chowdhury about 8 years 5 months ago

Hi,

I don't think it is possible to configure the 3550 switch to work as an Authentication server for other switches.

Instead you could use Cisco Secure ACS sever for this purpose.

Or if you are looking for something free, then you could opt for some radius server like

- Freeradius ( freeradius.org/ ) or

- Zeroshell (http://www.zeroshell.net/eng/ )

here is an example for configuring Zeroshell for Cisco.

http://www.addressplus.net/ZeroShell-Cisco-RADIUS.pdf

Hope this helps.

Correct Answer by Collin Clark about 8 years 5 months ago

You need to configure them locally on each switch. If you want a central database of users, you need to look at a radius or tacacs server and use AAA on your switches.

Hope that helps

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (2 ratings)
Loading.
Correct Answer
Collin Clark Wed, 08/06/2008 - 06:44

You need to configure them locally on each switch. If you want a central database of users, you need to look at a radius or tacacs server and use AAA on your switches.

Hope that helps

Correct Answer
dhananjoy chowdhury Wed, 08/06/2008 - 06:51

Hi,

I don't think it is possible to configure the 3550 switch to work as an Authentication server for other switches.

Instead you could use Cisco Secure ACS sever for this purpose.

Or if you are looking for something free, then you could opt for some radius server like

- Freeradius ( freeradius.org/ ) or

- Zeroshell (http://www.zeroshell.net/eng/ )

here is an example for configuring Zeroshell for Cisco.

http://www.addressplus.net/ZeroShell-Cisco-RADIUS.pdf

Hope this helps.

Actions

This Discussion