Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

AAA Reverse Telnet

I have Cisco 2511 with octal cable for terminal access, I want everyone can access it, but then seperately authenticate & authorize each attempt to reverse telnet. Currently I have:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+

aaa authorization commands 0 default group tacacs+

aaa authorization commands 1 default group tacacs+

aaa authorization commands 15 default group tacacs+

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 0 default start-stop group tacacs+

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

I have ACS v3.2 on Win2K Server SP4.

How can I authenticate & authorize each person who try to reverse telnet?

Thanks in advance

2 REPLIES
New Member

Re: AAA Reverse Telnet

Here is what I do:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

This authenticates everyone that goes out a line.

BC

New Member

AAA Reverse Telnet

This configuration just authenticates user on access server, but not the users connected to the access server via reverse telnet (console lines).

Any ideas how to configure authorization for the devices connected via console cable from the access server?

433
Views
0
Helpful
2
Replies
CreatePlease to create content