From: Jason Cash (cash2001@swbell.net)
Date: Wed Apr 23 2003 - 19:25:52 GMT-3
The problem with that is that once ' aaa authentication login default
local' is enabled, login local option is not available. See for
yourself
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
Jay Hennigan
Sent: Wednesday, April 23, 2003 3:10 AM
To: ccielab@groupstudy.com
Subject: Re: Priviledge commands
----- Original Message -----
From: "Jason Cash" <cash2001@swbell.net>
Subject: Priviledge commands
> I am having problems with the a task:
> "user brett should be able to enter config mode and then int. conf.
mode
> but no more"
>
> Here is my config:
> hostname r6
> !
> aaa new-model
> aaa authentication login default local
> aaa authorization exec default local
> !
> username brett privilege 8 password 0 favre
> !
> privilege configure level 8 interface
> privilege exec level 8 configure
> privilege exec level 8 configure terminal
> !
> end
>
> And here is the capture of the login:
>
> User Access Verification
>
> Username: brett
> Password:
>
> r6>conf t
^^^
Notice that this login is not enabled. You don't have the "#" sign.
Is the line (vty or console) from which the connection is made
configured
in line mode with "login local" ?
It should be. I suggest you practice this type of thing on VTYs instead
of console or you might get some extra practice with password recovery.
;-)
-- Jay Hennigan - CCIE #7880 - Network Administration - jay@west.net NetLojix Communications, Inc. - http://www.netlojix.com/ WestNet: Connecting you to the planet. 805 884-6323
This archive was generated by hypermail 2.1.4 : Thu May 01 2003 - 13:36:03 GMT-3