From: Schulz, Dave (DSchulz@dpsciences.com)
Date: Wed Oct 12 2005 - 09:23:34 GMT-3
This is an extension of further research on the privilege commands....
It appears that non-aaa commands work great and as expected with the
following. However, the aaa commands do not work with privileges the
way I would expect. Thanks, Ian for your insights. Here are the two
scenarios. Any thoughts on the aaa....bug? or, work as expected?
NON-AAA Configuration.....(access to console and vty recognizes
privileges)
!
hostname R2
!
username level15 privilege 15 password 0 level15
username level7 privilege 7 password 0 level7
!
!interface Serial0
ip address 192.168.1.2 255.255.255.0
!
!
line con 0
login local
line aux 0
line vty 0 4
login local
!
End
AAA Configuration.... (access to console goes directly to priv15 level,
no matter what. Vty comes up with an error indicating "error in
authentication")
!
hostname R2
!
aaa new-model
aaa authentication login con local
!
username level15 privilege 15 password 0 level15
username level7 privilege 7 password 0 level7
!
!interface Serial0
ip address 192.168.1.2 255.255.255.0
!
!
line con 0
login authentication con
line aux 0
line vty 0 4
login authentication con
!
End
Dave Schulz,
Email: dschulz@dpsciences.com <mailto:dschulz@dpsciences.com >
This archive was generated by hypermail 2.1.4 : Sun Nov 06 2005 - 22:00:50 GMT-3