Hi
I'm a bit new to Cisco and i find this AAA a bit confusing...
I've turend on AAA by:
aaa new-model
and it created me:
aaa authentication login default local
Can I use this "default" list for WebVPN ? And what would be a different if i create new "sslvpn" list...
Also when I'll be creating user for VPN remote access.. that user will also exist in local database and have access to router via SSH?
Because the research I've done it doesn't seem you can group users in different "aaa groups" e.g. user admin belongs under "admin" aaa group which can do ssh to router, users for VPN can only do remote VPN access and not SSH and login into router...
i saw ASA has some attribute for users called remote-user
•admin, in which users are allowed access to the configuration mode. This option also allows a user to connect via remote access.
•nas-prompt, in which users are allowed access to the EXEC mode.
•remote-access, in which users are allowed access to the network.
But i can't find this option in IOS on my 1900 Series ISR router.