From: Peng Zheng (zpnist@yahoo.com)
Date: Tue Mar 11 2003 - 21:33:39 GMT-3
Here is my config:
------------------
aaa new-model
aaa authentication login default group tacacs+
aaa authentication login TEST group tacacs+
aaa authentication enable default group tacacs+
...
interface Loopback0
ip address 131.108.3.1 255.255.255.0
!
interface Ethernet0
ip address 192.168.1.6 255.255.255.0
ip access-group 100 in
....
access-list 100 permit tcp host 192.168.1.2 host
192.168.1.6 eq telnet
access-list 100 dynamic fredlist permit tcp host
192.168.1.2 any eq telnet
...
tacacs-server host 192.168.1.2
tacacs-server key cisco
......
line vty 0 4
login authentication TEST
autocommand access-enable
----------------------------
If there is no ip access-group 100 in under int e 0
, the authentication part is OK.
After I added it, when I tried to telnet 192.168.1.6,
even there is no prompt.
What's the problem?
--- Fabrice Bobes <study@6colabs.com> wrote:
> Peng,
>
> Yes, it's possible.
> Just post your config and I'll check what you are
> missing.
>
> Thanks,
>
> Fabrice
> http://www.6colabs.com
>
> -----Original Message-----
> From: nobody@groupstudy.com
> [mailto:nobody@groupstudy.com] On Behalf Of
> Peng Zheng
> Sent: Tuesday, March 11, 2003 2:07 PM
> To: ccielab@groupstudy.com
> Subject: Lock-and-key with tacacs+ authentication
>
> Is it possible to use tacacs+ to authenticate
> lock-and-key? I tried but failed.
>
> Thanks for help.
>
> __________________________________________________
> Do you Yahoo!?
> Yahoo! Web Hosting - establish your business online
> http://webhosting.yahoo.com
>
This archive was generated by hypermail 2.1.4 : Sat Apr 05 2003 - 08:51:37 GMT-3