Using ACS 3.3 and I'm a newbie. The question I have is it possible to authenticate a user, who connects via telnet and/or SSH, directly to enable mode (priv 15) using ACS? The way we currently have it setup is a user logs in and then types in enable and their password to get to enable mode. I would just like to eliminate the extra step if I could.
I have seen this done with ACS and TACACS. Not sure if Radius does the same. On the router configure aaa for authentication and for authorization. (authentication verifies who they are and authorization allows them directly into privilege mode) In ACS be sure that you have given the proper permissions to include privilege access.
You should find that this works on the vty ports but not on the console. By default Cisco does do authorization on the console. Once you have it working properly if you want it to work on the console you would need to add aaa authorization console to the config.
Hi everyone, I would like to thank you in advance for any help you can provide a newcomer like myself!
Im studying the 100-105 book by Odom and am currently on the topic of Port security. I purchased a used 2960 and I'm trying to follow a...
While deploying a number of 18xx/2802/3802 model access points (APs), which run AP-COS as their operating platform. It can be observed on some occasions that while many of their access points were able to join the fabric WLC withou...
I am going to design and build an LAN network under a tunnel underground with long distance between the switches.
I will have 2 Catalyst switches and 8 Industrial IE3000, and they will be connected with fiber.
For now I am planning on use Layer-2 s...