Cisco

Cisco—AAA_Login_Local

Introduction

# 開AAA的時候不會吃line vty密碼
When AAA is enabled, the line vty password is ignored.

# 沒開AAA可以用password + login
When AAA is disabled, using password + login on the line is fine.

Configuration - Enable AAA

!
aaa new-model
aaa authentication login default local none
!
line vty 0 4
  password cisco
  login
  transport input telnet
!

Check - Enable AAA

( AAA開啟後,VTY無法使用login, login local )

Routing_Process

( 如果先設定完login也會被吃掉)

Routing_Process

Configuration - Disable AAA

[R1]
!
interface ethernet 0/0
  ip address 10.1.1.1 255.255.255.0
  no shutdown
!

[R2]
!
no aaa new-model
!
username cisco password cisco
!
interface ethernet 0/0
  ip address 10.1.1.2 255.255.255.0
  no shutdown
!
line vty 0 4
  password cisco
  login
  transport input telent
!

Check - Disable AAA

Routing_Process