Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Stopping router telnet access with ACS 3.1

Hi folks,

I was running ACS2.6 & using TACACS+ to authenticate dial in users & access to routers. When dial up users tried to telnet to a router they received an authorisation failure (EXEC box not ticked) if they tried to log in. Since upgrading to ACS3.1 they now log in & get a command line. They cannot get into enable mode however I don't like the fact they can actually get onto the routers.

Anyone know how I can stop this?

Thanks in advance, John.

  • AAA Identity and NAC
2 REPLIES
New Member

Re: Stopping router telnet access with ACS 3.1

But I guess as long as they cannot get into enable mode it is ok right?

New Member

Re: Stopping router telnet access with ACS 3.1

I would rather they cannot get onto the router at all. Even in non-priveledged mode you can gain quite a bit of information about the router & telnet to other devices.

110
Views
0
Helpful
2
Replies
This widget could not be displayed.