Solved

Cisco ASR 1001 and VTY configuration

Posted on 2011-09-28
2
3,366 Views
Last Modified: 2012-05-12
Hi

I am configuring a new Cisco ASR 1001 router, and I am trying to configure ssh authentication access.  As I go into line vt 0 15, and then do "login authentication vty", I get : AAA: Warning authentication list "vty" is not defined for LOGIN.

Can someone give me some detail on this cmd ?  I would like it so that if someone sshes into this router, local IDs go first, and then it goes to AAA server.

Thanks
0
Comment
Question by:Elemental12
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 26

Accepted Solution

by:
Soulja earned 500 total points
ID: 36718276
conf t
aaa new-model
aaa authentication login default local group tacacs+
aaa authentication enable default local group tacacs+


username test privilege 15 secret 0 password

tacacs-server host x.x.x.x

tacacs-server key abcdefg

line vty 0 15
login authentication default
0
 

Author Closing Comment

by:Elemental12
ID: 36718459
For your third aaa cmd, I needed to use: aaa authentication enable default group tacacs+.  Once I did that, then the login authentication default took.
0

Featured Post

Industry Leaders: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

We all know how boring and exhausting it is to transfer huge web projects developed locally to a webserver simply via FTP. The File Transfer Protocol is a really nice solution if you need to transfer small amounts of files, but if you're plannin…
In the world of WAN, QoS is a pretty important topic for most, if not all, networks. Some WAN technologies have QoS mechanisms built in, but others, such as some L2 WAN's, don't have QoS control in the provider cloud.
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
After creating this article (http://www.experts-exchange.com/articles/23699/Setup-Mikrotik-routers-with-OSPF.html), I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
Suggested Courses
Course of the Month10 days, 13 hours left to enroll

628 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question