Section 7.0: AAA (7 points)

7.1. AAA on the Router (4 points)

  1. Configure router authentication and authorization on R4 using TACACS+. Configure two users on ACS, “user1” and “user2.” User1 should have privilege level 10 and user2 privilege level 15. Configure such that User1 is able to run the command show running-configuration only, and user2 is able to run all commands.

  2. Configure redundancy such that in the event the TACACS+ server is down, both users are able to log in using the local database and maintaining the same authorization.

  3. When user1 or user2 logs in, they should get the # prompt with their respective privilege level without entering the enable command.

  4. Configure fallback to local in the event the AAA server is down. Do not configure ...

Get CCIE Security Practice Labs now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial