Scribd Logo
Upload

Welcome to Scribd!

  • CH 3 Aaasecurity

    Uploaded by

    him2000him
    3 views3 pages

    Original Title

    ch3aaasecurity

    Copyright

    © © All Rights Reserved

    Available Formats

    DOC, PDF, TXT or read online from Scribd

    Did you find this document useful?

    Is this content inappropriate?

    Report this Document

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    3 views3 pages

    CH 3 Aaasecurity

    Uploaded by

    him2000him

    Copyright:

    © All Rights Reserved
    Download as DOC, PDF, TXT or read online from Scribd
    Flag for inappropriate content
    of 3

    Task 1: Configure Local AAA Authentication for Console Access on R1

    R1 AAA
    Configure a local username on R1.
    .R1
    R1(config)#username Admin1 secret admin1pa55

    Configure local AAA authentication for console access on R1.


    .R1 console AAA
    R1(config)#aaa new-model
    R1(config)#aaa authentication login default local

    Configure the line console to use the defined AAA authentication method.
    AAA console
    R1(config)#line console 0
    R1(config-line)#login authentication default

    Task 2: Configure Local AAA Authentication for VTY Lines on R1


    AAA VTY
    Configure a named list AAA authentication method for VTY lines on R1.
    R1(config)#aaa authentication login TELNET-LOGIN local

    Configure the VTY lines to use the defined AAA authentication method.
    .AAA VTY
    R1(config)#line vty 0 4
    R1(config-line)#login authentication TELNET-LOGIN

    Task 3: Configure Server-Based AAA Authentication Using TACACS+ on R2


    R2 +TACACS AAA
    Configure a backup local database entry called Admin.
    Admin
    R2(config)#username Admin secret adminpa55

    Configure the TACACS+ server specifics on R2.


    This configuration specify the server ip address and the key which use at the tacacs+ server.
    .R2 +TACACS
    .+TACACS IP
    R2(config)#tacacs-server host 192.168.2.2
    R2(config)#tacacs-server key tacacspa55

    Configure AAA login authentication for console access on R2.


    R2 console AAA
    R2(config)#aaa new-model
    R2(config)#aaa authentication login default group tacacs+ local
    This configuration will allow local database login if the tacacs+ server is down or unable to connect
    for some reasons.
    Configure the line console to use the defined AAA authentication method.
    TACACS +
    .
    . AAA console
    R2(config)#line con 0
    R2(config-line)#login authentication default

    _____________________________________________________________________________
    2

    Task 4: Configure Server-Based AAA Authentication Using RADIUS on R3


    R3 RADIUS AAA
    Configure a backup local database entry called Admin.
    Admin
    R3(config)#username Admin secret adminpa55

    Configure the RADIUS server specifics on R3.


    .R3 RADIUS
    R3(config)#radius-server host 192.168.3.2
    R3(config)#radius-server key radiuspa55

    Configure AAA login authentication for console access on R3


    R3 console AAA
    R3(config)#aaa new-model
    R3(config)#aaa authentication login default group radius local

    Configure the line console to use the defined AAA authentication method.
    . AAA
    R3(config)#line con 0
    R3(config-line)#login authentication default

    _____________________________________________________________________________
    3

    You might also like