Categories
Welcome Center
Education & Development
Discussions
Certification Preparation
Recent Posts
Groups
Free Resources
Ebooks
Free Workshops
Trending Certifications Infographic
Infosec Training
IT & Security Training
Live Boot Camps
Security Awareness Training
About Infosec Institute
Home
Certification Preparation
Cisco
CCST & CCNA (Entry-level & Associate)
Using Local Logon if TACACs server fails
control
If I setup a new AAA model to use an external server integrated with AD, how easy is it to configure the router to also try locally stored logon if this server fails/unavailable?
Find more posts tagged with
Save $250 on 2025 certification boot camps from Infosec!
Book now with code EOY2025
Button
Comments
Zartanasaurus
You just add local or local-case to the authentication method.
control
Does adding line to the authentication method allow this? Do I need run these commands under the actual lines themselves, e.g under line vty 0 4, or is this a global command?
Zartanasaurus
Line means use the password configured under the vty line like you were using the
login
command under the vty. You can configure everything globally if you want by using the
default
login authentication list, or you can make a named list and apply it to the vty lines.
aaa new-model
aaa authentication login default group tacacs [local | local-case | line ]
Make sure you define your tacacs servers.
Quick Links
All Categories
Recent Posts
Activity
Unanswered
Groups
Best Of
INFOSEC Boot Camps
$250
OFF
Use code
EOY2025
to receive $250 off your 2025 certification boot camp!
BROWSE BOOT CAMPS
