Cisco 1005 - 1005 Router Manual de usuario Pagina 4

  • Descarga
  • Añadir a mis manuales
  • Imprimir
  • Pagina
    / 10
  • Tabla de contenidos
  • MARCADORES
  • Valorado. / 5. Basado en revisión del cliente
Vista de pagina 3
Cisco IOS Web Browser Commands
ip http authentication
FR-160
Cisco IOS Configuration Fundamentals Command Reference
ip http authentication
To specify a particular authentication method for HTTP server users, use the ip http authentication
global configuration command. Use the no form of this command to disable a configured authentication
method.
ip http authentication {aaa | enable | local | tacacs}
no ip http authentication {aaa | enable | local | tacacs}
Syntax Description
Defaults The default method of authentication for the HTTP server interface is the enable password method.
Command Modes Global configuration
Command History
Usage Guidelines The ip http authentication command specifies the authentication method to be used for login when a
client connects to the HTTP server. Use of the ip http authentication aaa command option is
recommended. The enable, local, and tacacs methods should be specified using the aaa authentication
login command.
The “enable” password method is the default HTTP server authentication method. If the enable
password is used as the HTTP server login authentication method, the client connects to the HTTP
server with a default privilege level of 15.
Note When the “enable” password is used as the HTTP server login authentication method, any username
entered will be ignored; the server will only verify the “enable” password. This may make it easier for
an attacker to access the router. Because a username and password pair is more secure than using only
a password for authentication, using only “enable” password for authentication is strongly discouraged.
Instead, use of the local or tacacs authentication options, configured as part of a global Authentication,
Authorization, and Accounting (AAA) framework, is recommended.
To configure HTTP access as part of a AAA policy, use the ip http authentication aaa command
option. The “local”, “tacacs”, or “enable” authentication methods should then be configured using the
aaa authentication login command.
aaa Indicates that the AAA facility is used for authentication.
enable Indicates that the "enable" password is used for logon authentication. This is
the default.
local Indicates that the local user database as defined on the Cisco router or access
server is used for authentication.
tacacs Indicates that the TACACS or XTACACS server is used for authentication.
Release Modification
11.2 F This command was introduced.
Vista de pagina 3
1 2 3 4 5 6 7 8 9 10

Comentarios a estos manuales

Sin comentarios