Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Step by step on how to AAA reverse telnet???

Hi,

Can someone help me with a step by step guide on how to enable AAA for reverse telnet?

I have a Cisco 2511 as access server & ACS 3.2/Win2K SP4 in my company lab. The Cisco 2511 is use as terminal access to reverse telnet other routers where employees use for simulation or testing. The only way people can telnet to 2511 is through LAN.

What I want is:

1. restrict user access to R1,R2,R3 etc. i.e. John can access R1 & R2 only & Andrew can access R3 & R4

2. Restrict by time of day, i.e. John can only access from 1:00PM to 5:00PM on Friday, Saturday & Sunday (or by date if it can).

3. All user can access 2511 but no enable mode.

Please help me...

1 REPLY
Anonymous
N/A

Re: Step by step on how to AAA reverse telnet???

tacacs-server host 10.10.10.1

tacacs-server key cisco

The following commands should work

aaa new-model

aaa authentication login default tacacs+ local

aaa authentication login no_tacacs enable

aaa authorization exec default tacacs+

aaa authorization commands 15 default tacacs+

!

line vty 0 4

login authentication

authorization exec loginard

193
Views
0
Helpful
1
Replies
CreatePlease login to create content