Refer to the cisco documentation under doc/cisco
I use the local users on the router to authenticate telnet logins for
simplicity, but you can do it with:
aaa new-model
aaa authentication login default group radius
aaa authorization exec default group radius
aaa authorization network default group radius
aaa accounting delay-start
aaa accounting exec default start-stop group radius
aaa accounting network default start-stop group radius
aaa processes 6
If you wish to use the cisco's users as a backup, which i HIGHLY recommend,
place local at the end of each line. If you're radius server is
misconfigured or down, the authentication will fallthrough to the cisco
device itself.
Steven
----- Original Message -----
From: "Robert LaGrasse" <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Wednesday, July 30, 2003 4:07 PM
Subject: Cisco Access Levels
> Hi All:
>
> I didn't see this in the FAQ, but I'm sure someone has done this before:
>
> I want to set the server up to authenticate/authorize telnet access
against
> the local linux user database. I need one group of users to have regular
old
> login access, and the other to have priviledge level (15) access.
>
> If there is an example of this somewhere, just point the way.
>
> I'm a newbie here, so please be gentle :) Thanks in advance for your help.
>
> -B
>
> -
> List info/subscribe/unsubscribe? See
http://www.freeradius.org/list/users.html
-
List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
