AAA configuration
username [username] privilege 15 secret [Password]
aaa new-model
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 1 default group tacacs+ local
aaa authorization commands 2 default group tacacs+ local
aaa authorization commands 3 default group tacacs+ local
aaa authorization commands 4 default group tacacs+ local
aaa authorization commands 5 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting connection default start-stop group tacacs+
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 2 default start-stop group tacacs+
aaa accounting commands 3 default start-stop group tacacs+
aaa accounting commands 4 default start-stop group tacacs+
aaa accounting commands 5 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
!
aaa session-id unique
!
ip tacacs source-interface Loopback0
tacacs-server host {TACAC-SERVER-ADDRESS} timeout 8
tacacs-server directed-request
tacacs-server key [ACS_Key]
******************************************************************
SSH configuration
config t
crypto key generate rsa gerenal-keys modulus 1024 {1024 OR 2048}
ip ssh source-interface loopback 0
ip ssh version 2
line vty 0 15
transport input ssh
transport output telnet ssh
username [username] privilege 15 secret [Password]
aaa new-model
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 1 default group tacacs+ local
aaa authorization commands 2 default group tacacs+ local
aaa authorization commands 3 default group tacacs+ local
aaa authorization commands 4 default group tacacs+ local
aaa authorization commands 5 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting connection default start-stop group tacacs+
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 2 default start-stop group tacacs+
aaa accounting commands 3 default start-stop group tacacs+
aaa accounting commands 4 default start-stop group tacacs+
aaa accounting commands 5 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
!
aaa session-id unique
!
ip tacacs source-interface Loopback0
tacacs-server host {TACAC-SERVER-ADDRESS} timeout 8
tacacs-server directed-request
tacacs-server key [ACS_Key]
******************************************************************
SSH configuration
config t
crypto key generate rsa gerenal-keys modulus 1024 {1024 OR 2048}
ip ssh source-interface loopback 0
ip ssh version 2
line vty 0 15
transport input ssh
transport output telnet ssh
No comments:
Post a Comment
Note: Only a member of this blog may post a comment.