Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1377
Views
5
Helpful
3
Replies

aaa new-model

cisco_lite
Level 1
Level 1

‎03-08-2009 08:05 AM - edited ‎03-06-2019 04:27 AM

Hi,

If i define aaa new-model (i.e. to use local username/password) and password under vty configuration, which one would be applicable while doing ssh into the router/switch.

Thanks.

Labels:
0 Helpful
3 Replies 3

adamclarkuk_2
Level 4
Level 4

‎03-08-2009 08:12 AM

Hi

It goes under vty, you just need to allow the transport

Line vty 0 4

Transport input ssh telnet

Then create the user under global conf

Username blah password blah

0 Helpful

cisco_lite
Level 1
Level 1
In response to adamclarkuk_2

‎03-08-2009 10:56 AM

Hi,

Does it mean if username is defined, ssh/telnet would not refer to password under vty.

0 Helpful

adamclarkuk_2
Level 4
Level 4
In response to cisco_lite

‎03-08-2009 11:18 AM

It depends on that you have set the aaa authentication to look at. If you use the command :-

aaa authentication login default line

then it will look at the line password (username can be anything), but the default will want a username and password and will not use the password under the vty details.

With the command:-

aaa authentication login default local line

It will try the line password first (username can be anything) if that fails it tries to match a username and password in the local database.

Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card