From: Jared Scrivener (jscrivener@ipexpert.com)
Date: Thu Jan 29 2009 - 14:09:31 ARST
Hey Henro,
Your safest option is to create a default AAA method for login that uses no
authentication. That is slightly different from configuring it to have the
same functionality as it would initially (where it would use line
authentication).
The wording of your question implies that you can't change the "initial
configuration". In that case "aaa authentication login default none" would
be your safest answer.
If the wording was implying that the VTY lines must act as per normal then
"aaa authentication login default line" would achieve that. However, you
would then need to set a password on the line (which seems to violate the
question wording). You'd also need to create a named method for the console
which uses no authentication (or else you would quickly find yourself locked
out).
Cheers,
Jared Scrivener CCIE3 #16983 (R&S, Security, SP), CISSP
Technical Instructor - IPexpert, Inc.
Telephone: +1.810.326.1444
Fax: +1.810.454.0130
Mailto: jscrivener@ipexpert.com
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
henro
Sent: Thursday, 29 January 2009 5:22 AM
To: ccielab@groupstudy.com
Subject: AAA NEW-MODEL
Hello All,
Whats the best way to implement aaa authentication without violating
the lab requirement of not changing the line vty 0 4 initial
configuration?
Thank you.
Henro
-- Sent from Gmail for mobile | mobile.google.comBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Sun Mar 01 2009 - 09:43:40 ARST