Stacy,
Thanks!
I'll have to give that a try.
- Dan
> -----Original Message-----
> From: Stacy W. Smith [mailto:stacy@conxion.net]
> Sent: Wednesday, March 21, 2001 2:10 PM
> To: Daniel Golding
> Cc: juniper-nsp@puck.nether.net
> Subject: RE: [j-nsp] On the Junipers you can ssh as root.
>
>
> At 12:45 PM 3/21/2001 -0500, Daniel Golding wrote:
> >2) There is no way to properly account for root access on a
> Juniper, UNLESS
> >you are forced to Radius authenticate with your own username, then either
> >sudo, or su to root.
>
> Assuming:
>
> 1) you use "authentication-order radius;"
> 2) you do not have a "root" account in your RADIUS database
> 3) the RADIUS server is reachable.
>
> The you can not SSH into the router as root. When the RADIUS
> server becomes unreachable, you can log in as root.
>
> Does that satisfy your requirement?
>
> --Stacy
>
This archive was generated by hypermail 2b29 : Mon Aug 05 2002 - 10:42:41 EDT