Аутентификация по Radius
SSH по radius, Console и Radius и Local
aaa new-model
aaa group server radius RADIUS_SERVER
server-private 192.168.0.2 auth-port 1812 acct-port 1813 key Cisco
aaa authentication login VTYLIST group RADIUS_SERVER local //Радиус пользователи, и Failover - локальные
aaa authentication login CONSOLE local //Только локальные пользователи
aaa authentication enable default enable
aaa authorization console
aaa authorization exec VTYLIST group RADIUS_N local
line con 0
login authentication CONSOLE
line vty 0 4
privilege level 0
authorization exec VTYLIST
login authentication VTYLIST
line vty 5 15
privilege level 0
authorization exec VTYLIST
login authentication VTYLIST
aaa new-model
aaa group server radius RADIUS_SERVER
server-private 192.168.0.2 auth-port 1812 acct-port 1813 key Cisco
aaa authentication login VTYLIST group RADIUS_SERVER local //Радиус пользователи, и Failover - локальные
aaa authentication login CONSOLE local //Только локальные пользователи
aaa authentication enable default enable
aaa authorization console
aaa authorization exec VTYLIST group RADIUS_N local
line con 0
login authentication CONSOLE
line vty 0 4
privilege level 0
authorization exec VTYLIST
login authentication VTYLIST
line vty 5 15
privilege level 0
authorization exec VTYLIST
login authentication VTYLIST
Комментарии
Отправить комментарий