Refer to the cisco documentation under doc/cisco I use the local users on the router to authenticate telnet logins for simplicity, but you can do it with:
aaa new-model aaa authentication login default group radius aaa authorization exec default group radius aaa authorization network default group radius aaa accounting delay-start aaa accounting exec default start-stop group radius aaa accounting network default start-stop group radius aaa processes 6 If you wish to use the cisco's users as a backup, which i HIGHLY recommend, place local at the end of each line. If you're radius server is misconfigured or down, the authentication will fallthrough to the cisco device itself. Steven ----- Original Message ----- From: "Robert LaGrasse" <[EMAIL PROTECTED]> To: <[EMAIL PROTECTED]> Sent: Wednesday, July 30, 2003 4:07 PM Subject: Cisco Access Levels > Hi All: > > I didn't see this in the FAQ, but I'm sure someone has done this before: > > I want to set the server up to authenticate/authorize telnet access against > the local linux user database. I need one group of users to have regular old > login access, and the other to have priviledge level (15) access. > > If there is an example of this somewhere, just point the way. > > I'm a newbie here, so please be gentle :) Thanks in advance for your help. > > -B > > - > List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html - List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html