AAA back to basics

delanajero Uncategorized July 25, 2016July 25, 2016 1 Minute

I think I’ve done enough BGP for the week and time to do some security basics.

service password-encryption
!
username delan password ccie
enable secret ccie
!
aaa new-model
!
aaa authentication login VTY local group tacacs+
aaa authentication login CONSOLE group tacacs+ line
aaa authentication enable default enable
aaa authorization exec group tacacs+ if-authenticated
!
aaa authentication username-prompt “Please enter your username: ”
aaa authentication password-prompt “Please enter your password: ”
aaa authentication banner #
Access to this router is restricted to friends of Delan A
#
!
aaa authentication fail-message #
Invalid password, please check your username, password or both
#
!
line con 0
login authentication CONSOLE
password ccie321
!
line vty 0 4
privilege level 15
authorization exec VTY
login authentication VTY
!

Published by delanajero

View all posts by delanajero

Published July 25, 2016July 25, 2016

Leave a Reply Cancel reply

Enter your comment here...

Fill in your details below or click an icon to log in:

Email (required) (Address never made public)

Name (required)

Website

You are commenting using your WordPress.com account. ( Log Out / Change )

You are commenting using your Facebook account. ( Log Out / Change )

Cancel

Connecting to %s

%d bloggers like this:

	Raghav on Asterisk 16 LTS on Ubuntu Serv…
	xerofdv on Configure Cisco Aironet 1130AG…
	delanajero on Configure Cisco Aironet 1130AG…
	delanajero on Cisco RV134W Initial Revi…
	Steve on Configure Cisco Aironet 1130AG…

Share this:

Like this:

Related

Published by delanajero

Leave a Reply Cancel reply