04-11-2004 04:55 AM - edited 03-10-2019 07:44 AM
I have Cisco 2511 with octal cable for terminal access, I want everyone can access it, but then seperately authenticate & authorize each attempt to reverse telnet. Currently I have:
aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization exec default group tacacs+
aaa authorization commands 0 default group tacacs+
aaa authorization commands 1 default group tacacs+
aaa authorization commands 15 default group tacacs+
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
I have ACS v3.2 on Win2K Server SP4.
How can I authenticate & authorize each person who try to reverse telnet?
Thanks in advance
04-14-2004 11:01 PM
Here is what I do:
aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization exec default group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
This authenticates everyone that goes out a line.
BC
02-23-2012 06:59 AM
This configuration just authenticates user on access server, but not the users connected to the access server via reverse telnet (console lines).
Any ideas how to configure authorization for the devices connected via console cable from the access server?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide