How to use " ip identd" to check the incoming user ?

Unanswered Question
Sep 30th, 2002

hi,

I configurate the command "ip identd" in routers. How to get the information from the port (113) in routers. I had used the access-list to check the telnet session between two routers but could n't view anything.

please advise.

best regards

fred.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
steve.barlow Mon, 09/30/2002 - 06:13

What exactly are you trying to do? "Show users" to see who is logged in.

If you want info on the ident protocol see RFC 1413: http://www.cis.ohio-state.edu/cgi-bin/rfc/rfc1413.html . With identification support, you can connect a TCP port on a host, issue a simple text string to request information, and receive a simple text-string reply. There isn't alot you can configure with it, just enable/disable. Make sure the request is sent properly.

If you want to see who logs in and what they do you can try two options: local priviledge or tacacs+ AAA.

Local example:

priviledge exec level 2 ping

priviledge exec level 2 show config

priveldge exec level 3 debug ip rip

enable secret level 2 ...

enable secret level 3 ...

Log in on one of those level: enable 2 or enable 3

This way you can see the username that logs in, and limit what they do.

Tacacs+ example:

aaa new-model

tacacs-server host 1.1.1.1

tacacs-server key ...

aaa authorization exec tacacs+

aaa accounting ...

Set up a tacacs+ server.

This way you see who logs in, limit what they do, and have audit records of what they did.

Hope it helps.

Steve

Actions

This Discussion