I have a text file that I do a 'select-all', 'copy' from and then 'paste' into a new CatOS switch. Here's the AAA lines that I paste, in the order I paste them:
#authentication set authentication login tacacs enable console primary set authentication login tacacs enable telnet primary set authentication login tacacs enable http primary set authentication enable tacacs enable console primary set authentication enable tacacs enable telnet primary set authentication enable tacacs enable http primary #accounting set accounting commands enable all stop-only tacacs+ #authorization set authorization exec enable tacacs+ if-authenticated console set authorization exec enable tacacs+ if-authenticated telnet set authorization enable enable tacacs+ if-authenticated console set authorization enable enable tacacs+ if-authenticated telnet set authorization commands enable all tacacs+ if-authenticated console set authorization commands enable all tacacs+ if-authenticated telnet Note: I also issue a "set ip http server disable" so the HTTP lines above are probably not needed but this group of commands seem to work pretty well. Hope it helps. -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]]On Behalf Of Shane Stockman Sent: Tuesday, October 23, 2001 2:44 PM To: [EMAIL PROTECTED] Subject: Setting up TACACs on catalyst switches [7:23944] I have intstalled a couple of switches (6509,5500,4000,3548,2924)in my network a couple of months ago and would now like to add tacacs to the switches for AAA. Does anyone have any ideas with regards to the set commands and as well not letting me lock myself out of the switch. Thanks in advance _________________________________________________________________ Get your FREE download of MSN Explorer at http://explorer.msn.com/intl.asp Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=24799&t=23944 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
