From: Ben (bmunyao@gmail.com)
Date: Wed Jul 18 2007 - 04:08:42 ART
John
I'm not sure i understand the question but are you doing something along
these lines?
R1
user R2 pass CISCO
interface virtual-template1
ip add 10.1.1.1 255.255.255.0
encap ppp
ppp authen chap
R2
user R1 pass CISCO
interface virtual-template1
ip add 10.1.1.2 255.255.255.0
encap ppp
ppp authen chap
By default this will use the local user database, with or without "aaa
authen ppp default local". The minute you enable aaa authentication with
"local" authentication for PPP, and you don't have the appropriate user
accounts defined, your PPP link will not come up. You can try that out and
see.
HTH
Ben
On 7/18/07, johngibson1541@yahoo.com <johngibson1541@yahoo.com> wrote:
>
> Appreciate any thing.
>
> I know when we use "aaa new-model", we have to be careful about
> "aaa authentication login default".
>
> But I "aaa authentication ppp default local" doesn't seem to have
> anything to do with CHAP. It doesn't have any parameter about chap
> or pap.
>
> I am doing PPPoFR.
>
> And "aaa authentication ppp default local" seems to have no effect
> to any thing. No-OP. I tested making wrong passwords on 2 ends.
> No authentication failure what so ever.
>
> John
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Sat Aug 18 2007 - 08:17:41 ART