Configure Local Database Authentication Using AAA

By requiring two tokens, a username and a password, rather than just a password, you can make the routers more secure. To do so, configure a local username and password on the router and configure AAA authentication.

Step 1 Configure AAA authentication for console access.

NewYork(config)# aaa new-model

NewYork(config)# aaa authentication login con-access local NewYork(config)# username nyadmin password conxss4NY

NewYork(config)# line con 0

NewYork(Config-line)# login authentication con-access

Atlanta(config)# aaa new-model

Atlanta(config)# aaa authentication login con-access local Atlanta(config)# username atladmin password conxss4ATL

Atlanta(config)# line con 0

Atlanta(Config-line)# login authentication con-access

LosAngeles(config)#)# aaa new-model

LosAngeles(config)#)# aaa authentication login con-access local LosAngeles(config)#)# username laadmin password conxss4LA

LosAngeles(config)#)# line con 0

LosAngeles(config)#-line)# login authentication con-access

Step 2 Configure AAA authentication for vty access.

NewYork(config)# aaa authentication login vty-access local NewYork(config)# username nyRmtadmin password vtyxss4NY

NewYork(config)# line vty 0 4

NewYork(config-line)# login authentication vty-access

Atlanta(config)# aaa authentication login vty-access local Atlanta(config)# username atlRmtadmin password vtyxss4ATL

Atlanta(config)# line vty 0

Atlanta(config-line)# login authentication vty-access

LosAngeles(config)#)# aaa authentication login vty-access local LosAngeles(config)#)# username laRmtadmin password vtyxss4LA

LosAngeles(config)#)# line vty 0 4

LosAngeles(config)#-line)# login authentication vty-access

Was this article helpful?

0 0

Post a comment