Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

tacacs+ only on vty on terminal server

I'm using a terminal server to access the serial output from a device.  I don't want to require a username and password when accessing one of the serial lines (it's just streaming output), but I want to use tacacs+ for authentication when accessing the vty.  Any time I add "aaa new-model" it always starts asking for a username when I telnet to port 2015.  Is there any way to get tacacs+ only on the vty/console?

2 REPLIES
New Member

tacacs+ only on vty on terminal server

OK, I figured it out.  I added the following to my aaa config to define a separate authentication type:

aaa authentication login serial none

Then, on the serial lines where I wanted to disable the username/password I added the following:

login authentication serial

Hall of Fame Super Silver

tacacs+ only on vty on terminal server

Gregg

I am glad that you figured out the solution to your own problem. (frequently the things that we learn the best are the things that we figure out on our own). Thanks for posting back to the thread and telling us how you solved this problem.

HTH

Rick

772
Views
0
Helpful
2
Replies