Authentication without Password

ppande · ‎04-01-2003

we would like to configure a cisco nas AS 5300 for authentication without the need for any password. The authetication is required on username basis only. Is there any way to do this.

Please advise.

liviu.gheorghe · ‎04-01-2003

You can configure local users without any password with the IOS command "username".

Then you have to configure local authentication on the physical lines your users are using. This is done with the command "login local" in line config mode (line vty 0 4 or line 1 240, for example).

If you are using aaa new-model, then you have to configure: "aaa authentication login default local".

Regards, LG
*** Please Rate All Helpful Responses ***

r.vanwolferen · ‎04-03-2003

If you are using ACS for the authentication than a user must have a password. Creating a user without a password is not allowed in ACS. So authentication to the ACS is then not possible.

You can only authenticate on the router, wich means that the usernames are inside the configuration.

For security reasons and logging create the user with a password the same as the username. The ACS can log the connection and no users are inside the router.

ppande · ‎04-04-2003

Thanks for the reply. Actually we are using AS5300 for dial in users with Radius for authentication. We have the following configuration on our As5300

aaa new-model

aaa authentication login default radius

aaa authentication login no_radius line

aaa authentication ppp default if-needed radius

we are using certain attributes of radius for authetication , however we have found that cisco as 5300 requires some password (any character ) for authetication. on a Commworks NAS TCH 1000 we are able to get login without any password.

any input will be greatly appreciated.