500 | Security
www.dell.com | support.dell.com
Telnet
To use Telnet with SSH, you must first enable SSH, as described above.
By default, the Telnet daemon is enabled. To disable the Telnet daemon, use the
[no] ip telnet server enable
command, or disable Telnet in the startup config (Figure 28-15).
Figure 28-15. [no] ip telnet server enable Command Example
VTY Line and Access-Class Configuration
Various methods are available to restrict VTY access in FTOS. These depend on which authentication
scheme you use—line, local, or remote (Table 28-1).
FTOS provides several ways to configure access classes for VTY lines, including:
• VTY Line Local Authentication and Authorization
• VTY Line Remote Authentication and Authorization
VTY Line Local Authentication and Authorization
FTOS retrieves the access class from the local database. To use this feature, follow these steps:
1. Create a username
2. Enter a password
3. Assign an access class
4. Enter a privilege level
Table 28-1. VTY Access
Authentication Method
VTY
Access-Class
Support?
Username
Access-Class
Support? Remote Authorization Support?
Line YES NO NO
Local NO YES NO
TACACS+ YES NO YES (with FTOS 5.2.1.0 and later)
RADIUS YES NO YES (with FTOS 6.1.1.0 and later)
FTOS(conf)#ip telnet server enable
FTOS(conf)#no ip telnet server enable
To Next Page
Loading...
