通信人家园

 找回密码
 注册

只需一步,快速开始

短信验证,便捷登录

搜索

军衔等级:

  中校

注册:2006-3-5
跳转到指定楼层
1#
发表于 2006-3-16 08:50:00 |只看该作者 |倒序浏览
基于ACS的登陆认证
Building configuration...

Current configuration:
!
version 12.0
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname Switch
!
aaa new-model
aaa authentication login default group tacacs+ LOGIN认证
aaa authentication enable default none 免ENABLE密码
aaa authorization commands 15 default group tacacs+ 授权级别
aaa accounting commands 15 default start-stop group tacacs+ 记帐
!
ip subnet-zero
!
interface FastEthernet0/1
!
interface FastEthernet0/2
!
interface FastEthernet0/24
!
interface GigabitEthernet0/1
!
interface GigabitEthernet0/2
!
interface VLAN1
ip address 172.16.10.250 255.255.255.0
no ip directed-broadcast
no ip route-cache
!
tacacs-server host 172.16.10.10 服务器地址
tacacs-server key 123 效验KEY
!
line con 0
transport input none
stopbits 1
line vty 5 15
!

ACS用的是3.2.
这个IOS版本上默认的LOGIN都是选择性的,如果没有tacacs认证,就用本地认证,所以在LINE上都无需设置.

举报本楼

您需要登录后才可以回帖 登录 | 注册 |

手机版|C114 ( 沪ICP备12002291号-1 )|联系我们 |网站地图  

GMT+8, 2024-11-15 17:15 , Processed in 0.094681 second(s), 15 queries , Gzip On.

Copyright © 1999-2023 C114 All Rights Reserved

Discuz Licensed

回顶部