Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
727
Views
0
Helpful
4
Replies

Cisco Switch 3850

Go to solution
fmugambi
VIP
VIP

‎01-18-2024 11:51 PM

Hello Team,

Why dont i have an option to configure "login local" under line con 0, on cisco catalyst switch 3850?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Blue_Bird
VIP
VIP

‎01-19-2024 04:01 AM - edited ‎01-19-2024 04:02 AM

Hi  fmugambi,

As other memebers mentioned, the login local command won't work...if switch is enable with aaa new-model command

If you want to logging into the switch only as local user ( in Lab or Test environment)...you can disable remote authentiction using no aaa new-model, I think it is not recommended in production environment... it's based on the scenario.

Here is the sample configuration for local authentication....

conf t

no aaa new-model

username user_name priv 15 secret password

line vty 0 4

login local

trans in all

exec-t 5 0

end

wr

If you can't go with disabling remote authentication use following aaa commands...

Switch(config)# username your_user_name privilege 15 password 7 secret567

Switch(config)# aaa authentication login default local

Switch(config)# line console 0

Switch(config-line)# login authentication default

Switch(config-line)#end

Best regards
******* If This Helps, Please Rate *******

View solution in original post

0 Helpful
4 Replies 4

Go to solution
M02@rt37
VIP
VIP

‎01-19-2024 12:21 AM - edited ‎01-19-2024 04:09 AM

Hello @fmugambi 

Do you configure AAA protocol ?

If yes, login local is no more available. You need login authentication <default> command instead.

 

Best regards
.ı|ı.ı|ı. If This Helps, Please Rate .ı|ı.ı|ı.
0 Helpful

Go to solution
MHM Cisco World
VIP
VIP

‎01-19-2024 12:27 AM

two topic 
1- VTY not work with config (you share) this I will answer today 
2- this issue 
login local is disappear as soon you config aaa new-model 
but you can use 


login 
password 

this allow to access console without add username, 

NOTE:- we here try to config line permit or deny access to device 
so dont WR any change, if we wrong we can reboot and you can return to previous point and access to SW
be careful any wrong maybe lead you to password recovery or factory reset 

MHM

0 Helpful

Go to solution
balaji.bandi
Hall of Fame
Hall of Fame

‎01-19-2024 01:56 AM

You may try below syntax :

username balajiadmin password youguesscorrect priv 15
aaa authentication login CONSOLE local
aaa authorization exec CONSOLE if-authenticated
!
line con 0
login authentication CONSOLE

Refer below guide :

https://www.cisco.com/en/US/docs/switches/lan/catalyst3850/software/release/3.2_0_se/multibook/configuration_guide/b_consolidated_config_guide_3850_chapter_0101110.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful

Go to solution
Blue_Bird
VIP
VIP

‎01-19-2024 04:01 AM - edited ‎01-19-2024 04:02 AM

Hi  fmugambi,

As other memebers mentioned, the login local command won't work...if switch is enable with aaa new-model command

If you want to logging into the switch only as local user ( in Lab or Test environment)...you can disable remote authentiction using no aaa new-model, I think it is not recommended in production environment... it's based on the scenario.

Here is the sample configuration for local authentication....

conf t

no aaa new-model

username user_name priv 15 secret password

line vty 0 4

login local

trans in all

exec-t 5 0

end

wr

If you can't go with disabling remote authentication use following aaa commands...

Switch(config)# username your_user_name privilege 15 password 7 secret567

Switch(config)# aaa authentication login default local

Switch(config)# line console 0

Switch(config-line)# login authentication default

Switch(config-line)#end

Best regards
******* If This Helps, Please Rate *******

0 Helpful
Customers Also Viewed These Support Documents