using local user database as login to C6500 iOS 12.2

jacobss914 · ‎09-12-2012

We are wanting to use local database users to authenticate our SSH connections to our 6500 cores.

We have added the usernames and password into the 6500 using

username anameduser password astrongpassword

or

username anameduser secret astrongpassword

We where expecting the commands to be the same as other iOS devices example C3750 we would add.

Line vty 0 4

login local

And this would allow us to use the local user database to authenticate our ssh sessions.

The login local commands are not availbe on the 6500s and we have not found any documentation on how to impliment a local database for this purpose except in a CatOS 6500.

Stephen

jacobss914 · ‎09-21-2012

12.1 version had the login local command in IOS, that was changed in version 12.2

So now I had to use the following to get this to work.

username GenericUserID password StrongPassword

aaa new-model

aaa authentication login GroupID local

aaa session-id common

vty 0 4

login authentication GroupID

Peter Coggle · ‎12-13-2013

i was having the same issue and was looking for a solution. thanks a lot for sharing the solution

Rolf Fischer · ‎12-13-2013

Hi,

12.1 version had the login local command in IOS, that was changed in version 12.2

actually the "login local" command is still there - what has changed is that "aaa new-model" is now enabled by default.

When you disable aaa new-model, you can use the old login local command again:

c6500_12_2_18SXF(config)#line vty 0 4

c6500_12_2_18SXF(config-line)#login ?

authentication Authentication parameters.

c6500_12_2_18SXF(config)#no aaa new-model

c6500_12_2_18SXF(config)#line vty 0 4

c6500_12_2_18SXF(config-line)#login ?

local Local password checking

HTH

Rolf