6-67
Catalyst 2900 Series XL and Catalyst 3500 Series XL Software Configuration Guide
78-6511-05
Chapter 6 Configuring the System
Configuring TACACS+
Configuring a Switch for Local AAA
You can configure AAA to operate without a server by setting the switch to
implement AAA in local mode. The switch then verifies authentication and
authorization. No accounting is available in this configuration.
Beginning in privileged EXEC mode, follow these steps to configure the switch
for local AAA:
Command Purpose
Step 1
configure terminal Enter global configuration mode.
Step 2
aaa new-model Enable AAA.
Step 3
aaa authentication login
default local
Set the login authorization to default to local.
Step 4
aaa authorization exec local Configure user AAA authorization for all network-related
service requests, including SLIP, PPP NCPs, and ARA
protocols.
Step 5
aaa authorization network
local
Configure user AAA authorization to determine if the user
is allowed to run an EXEC shell.
Step 6
username name password
password privilege level
Enter the local database.
Repeat this command for each user.
To Next Page
Loading...
