[c-nsp] AAA cisco configs

Kanagaraj Krishna kanagaraj at aims.com.my
Mon Mar 27 02:52:35 EST 2006


Hi,
     I'm using these commands for my AAA settings for VTY login. Are there
any needed, unneeded or redundant command in the config provided below?
Thanks.

aaa new-model
aaa authentication login vtymeth group tacacs+ local enable
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 1 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting network default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
aaa accounting system default start-stop group tacacs+


line con 0
line vty 0 4
 exec-timeout 0 0
 login authentication vtymeth


Regards,
Kana



More information about the cisco-nsp mailing list