Hi All,
Could someone please help!? I am trying to configure dot1x for switchport
interfaces but I want the telnet lines to only ask for a password, therefore
not breaking the rules of mock labs etc
by changing the authentication methods of the telnet lines.
So I have done the following configuration
#aaa new-model
#aaa authentication login VTY line
#line vty 0 15
#login authentication VTY
#password cisco
I'm sure this is correct, but when I telnet from another device to the
switch (or to itself for that matter), I get the following, no password
prompt and nothing else (with debug aaa authentication enabled):
Rack1SW2(config-line)#do telnet 150.1.8.8
Trying 150.1.8.8 ... Open
*Mar 12 04:23:51.567: AAA/BIND(00000009): Bind i/f
*Mar 12 04:23:51.567: AAA/AUTHEN/LOGIN (00000009): Pick method list 'VTY'
From here I have to manually ctrl-shift-6 x out to do anything else. I do
not have any access-lists configured that could affect the config and if I
set the aaa authentication login method to "none", it does not ask for a
password and continues as expected to the switch prompt.
Thanks in advance,
Regards,
Sean
Blogs and organic groups at http://www.ccie.net
Received on Sun May 03 2009 - 18:37:35 ART
This archive was generated by hypermail 2.2.0 : Mon Jun 01 2009 - 07:04:41 ART