topic AAA Reverse Telnet in Network Access Control

AAA Reverse Telnet

v.wibawa — Sun, 10 Mar 2019 14:44:56 GMT

I have Cisco 2511 with octal cable for terminal access, I want everyone can access it, but then seperately authenticate & authorize each attempt to reverse telnet. Currently I have:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+

aaa authorization commands 0 default group tacacs+

aaa authorization commands 1 default group tacacs+

aaa authorization commands 15 default group tacacs+

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 0 default start-stop group tacacs+

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

I have ACS v3.2 on Win2K Server SP4.

How can I authenticate & authorize each person who try to reverse telnet?

Thanks in advance

Re: AAA Reverse Telnet

bcarroll — Thu, 15 Apr 2004 06:01:27 GMT

Here is what I do:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

This authenticates everyone that goes out a line.

AAA Reverse Telnet

EvaldasOu — Thu, 23 Feb 2012 14:59:21 GMT

This configuration just authenticates user on access server, but not the users connected to the access server via reverse telnet (console lines).

Any ideas how to configure authorization for the devices connected via console cable from the access server?