×

Warning message

  • Cisco Support Forums is in Read Only mode while the site is being migrated.
  • Cisco Support Forums is in Read Only mode while the site is being migrated.

Tacacs authentication for console access on the switch

Document

Fri, 04/26/2013 - 15:45
Apr 26th, 2013
User Badges:
  • Silver, 250 points or more

This configuration  configures a tacacs + server for user authentication for console access.

aaa new-model
aaa authentication login console group tacacs+ local
aaa authentication enable console group tacacs+ enable
aaa authorization exec console group tacacs+ local if-authenticated
aaa accounting exec console start-stop group tacacs+
aaa session-id common
tacacs-server host 10.10.10.1
tacacs-server directed-request
tacacs-server key test
ip access-list standard VTY-ACCESS
remark VTY ACCESS
permit 172.24.0.0 0.0.255.255
deny any log
line con 0
exec-timeout 5 0
login authentication console

authorization exec console

transport output telnet
stopbits 1
line vty 0 4
access-class VTY-ACCESS in
exec-timeout 5 0
transport input telnet
transport output telnet
line vty 5 15
transport input none
transport output none



#Please post comments if there are any queries and rate if useful



Loading.

Actions

This Document

Related Content