Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
903
Views
0
Helpful
5
Replies

username and password in router

netmaniac
Level 1
Level 1

‎06-13-2005 09:06 PM - edited ‎03-03-2019 09:48 AM

I am working as Network Admin, and our security team is insting on username and password for all the admin in our team, is this possible with out having Tacacs server,,,,currently we have IP based access list for admins......

Labels:
0 Helpful
5 Replies 5

dbellaze
Level 4
Level 4

‎06-13-2005 09:18 PM

Yes you can configure username and passwords locally on the router.

For example

router(config)#username admin password secret

Daniel

0 Helpful

netmaniac
Level 1
Level 1
In response to dbellaze

‎06-13-2005 10:14 PM

Thanx for the reply mate..

I configured username and password but still when I do a telnet it is not asking me for username and password which I configured succesfully

config t

usernmae xyz password cisco123 line vty 0 4

as per my understaning now whenever i do a telnet it should ask me for username and password which is not happening.... I also gave priveleg of 15......

any suggestions

0 Helpful

abdulma
Level 1
Level 1
In response to netmaniac

‎06-13-2005 10:26 PM

try this

username xyz password

line vty 0 4

login local

0 Helpful

Richard Burts
Hall of Fame
Hall of Fame
In response to abdulma

‎06-14-2005 04:30 AM

The combination of username password with login local should give you the functionality that your security team wants. You probably want the login local on all your vty ports and on the console.

You also want to be sure that you have configured no aaa new-model (or you can configure aaa new-model and then configure aaa authentication login default local and aaa authentication enable default enable). login local does not work with aaa new-model.

You will need to configure this on each router and switch in the network. And as there are changes in personnel you will need to update each device. Which is one of the reasons why authentication servers (running tacacs+ or radius) can be very helpful in reducing network maintanance activity and enhancing security.

HTH

Rick

HTH

Rick
0 Helpful

thisisshanky
Level 11
Level 11

‎06-13-2005 09:23 PM

You can use a server like Cisco ACS to support user auth. for authenticating admins logging into network devices. Know that TACACS+ is a Cisco proprietary protocol.

http://www.cisco.com/en/US/tech/tk583/tk642/tsd_technology_support_sub-protocol_home.html

Edit

----

I should have probably read the question properly. The post above answers your question!

Sankar Nair
UC Solutions Architect
Pacific Northwest | CDW
CCIE Collaboration #17135 Emeritus
0 Helpful
Customers Also Viewed These Support Documents