No luck. I don't get any prompts going in through a console session. Only if I elevate to exec mode it prompts for a password but I want it to prompt from the very start. 

It's a Cisco 3560 Switch

Hi,

So are you connected directly into the console port or are you accessing via telnet/ssh ?

If you are on the console direct the to see a prompt for security you need to configure

conf t

!

line cons 0

password YOURPASSWORD

!

end

quit

and retry the console port you should now require a password when you hit carriage return

Regards

Alex

So here's what I have and still no luck. The minute i open a Putty with a console cable plugged in I go right in to SWITCH>

line con 0
password 7 0202165A0E2570B2E5F

So i can't do "login" has to be "login authentication...."

Looks like that did it! I'm not using RADIUS or TACACS at the moment, but i removed aaa new-model and was able to set it. Now I get prompted.

If I was using RADIUS or TACACS though, would i be unable to accomplish this?

Hi,

If you were to use TACACS+ everyone who loggs on to
the box whether console port or telnet/ssh would need a username and password.

Users can be set up with different rights e.g.

May be you as full admin would have acess to all show,config read & write.

May be a different user could have show as read only etc.

Loads of info at:-
http://www.cisco.com/c/en/us/tech/security-vpn/terminal-access-controller-access-control-system-tacacs/index.html?referring_site=bodynav

Hope this helps
Regards
Alex

Right. Got it good to know. At least it can be done so you have a password in all areas either local or through TACACS. Thanks again for the help!