For basic user login authentication I would suggest Tacacs+ . Its very easy to setup and has some nice features such as encryption of the username/password and keeping a log of each user's executed commands. You can manually configure username/passwords or use a unix passwd file. Please note that this will not encrypt all data from PC to router, for that type of encryption you should look into IPSec.
""Wilson, Christian"" wrote in message news:200211012153.VAA23055@;groupstudy.com... > I have recently implemented the following switches and routers: > > 4006 > 6509 > 3640 > 2600 > > My dillema is how to secure remote administration. I have not been able to > find any documentation supporting SSH on the 4006's. I have found docs on > SSH for the 6509, but only in hybrid mode, and I am running native. I have > found a sketchy doc for the routers implementation of SSH, but it lists that > it is not supported software and documents are scarce. What are my other > alternatives? I have read about cisco secure ACS and have ordered the > software, which should enable many options, but they are unclear to me. > Does RADIUS, S/Key, and TACACS+ encrpt the data between my PC and the > router, or does it just encrypt the login iformation between the router and > the ACS server? I need to protect my sessions end to end. Any advise would > be greatly appreciated! Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=56728&t=56721 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
