CCSP Self-Study: Securing Cisco IOS Networks (SECUR)

Configuring the Cisco IOS Firewall with an AAA Server

This section discusses how to configure the Cisco IOS Firewall to work with an AAA server and enable the authentication proxy feature.

Enabling AAA

Use the aaa new-model global configuration command to enable the AAA access control system. Use the no form of this command to disable the AAA access control model.

NOTE

After you have enabled AAA, TACACS and extended TACACS commands are no longer available. If you initialize AAA functionality and later decide to use TACACS or extended TACACS, issue the no form of this command and then enable the version of TACACS that you want to use.

The syntax of the aaa new-model command is as follows:

						aaa new-model
						no aaa new-model

This command has no arguments. ...

Get CCSP Self-Study: Securing Cisco IOS Networks (SECUR) now with the O’Reilly learning platform.

O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.

Start your free trial

CCSP Self-Study: Securing Cisco IOS Networks (SECUR) by John F. Roland

Configuring the Cisco IOS Firewall with an AAA Server

Enabling AAA

Don’t leave empty-handed

It’s yours, free.

Check it out now on O’Reilly