12-04-2013 08:30 AM - edited 03-07-2019 04:55 PM
Hello All.
I am attempting to configure some 2960 series switches to authenticate http and https browser management access against a local username database and cannot get the http or the https server to pop up a challenge response box for a login against the local username database. I just want to authenticate against the local username database only and NOT against a TACACS or ACS server.
The switches are Cisco 2960 model WS-C2960-48TC-L running IOS v12.2(44)SE6 C2960-LANBASEK9-M.
I have added the following configuration statements to the setup:
username JohnDoe priv 15 secret JohnsPassword
aaa new-model
aaa authentication login default local
aaa authorization exec default local
aaa authorization network default local
ip http server
ip http secure-server
ip http authentication aaa
When accessing the IP of the switch I am asked if I want a "secure session" and then it goes straight to the switch GUI and doesn't offer a challenge response box to authenticate against the local database. Seems like this should be simple to do. What am I missing?
Thanks in advance for your responses.
Steve
Solved! Go to Solution.
12-05-2013 01:41 AM
replace this cmd:
ip http authentication aaa to ip http authentication local
Regards,
Habibi
12-05-2013 01:41 AM
replace this cmd:
ip http authentication aaa to ip http authentication local
Regards,
Habibi
12-05-2013 06:23 AM
Habibi,
This worked nicely. The triple A stuff isn't necessary with it. Knew there had to be a "simple" solution.
Thanks.
Steve
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide