tailieunhanh - Local Switch Security for Controlled User Access
Your network consists of several network devices. You would like to configure access security to your devices by user where possible. You DO NOT have a TACACS+ or RADIUS server available for centralized access. Configure each device as required. The following security information should be used. | Lab Local Switch Security for Controlled User Access ALSwitch 2900XL Management PC 24 Trunk DLRouter 4006 Accounting VLAN10 24 Objective Use local switch security for controlled user access. Scenario Your network consists of several network devices. You would like to configure access security to your devices by user where possible. You DO NOT have a TACACS or RADIUS server available for centralized access. Configure each device as required. The following security information should be used. Local Passwords User admin Password cisco Enable password enable Lab Tasks 1. Cable the lab as shown in the diagram. 2. The first device to be configured will be the Catalyst 2900XL. Log into the switch enter privileged mode and clear the NVRAM and then restart. 3. Configure ALSwitch including all basic information and trunking information. a. Configure the hostname Switch config hostname ALSwitch b. Configure the switch trunking information on FastEthernet0 1 and portfast on FastEthernet0 2 ALSwitch config interface FastEthernet0 1 ALSwitch config-if switchport trunk encapsulation dot1q ALSwitch config-if switchport mode trunk ALSwitch config interface FastEthernet0 2 ALSwitch config-if spanning-tree portfast c. Configure an IP address for the management vlan ALSwitch config interface VLAN1 ALSwitch config-if ip address 4. Configure ALSwitch security for local AAA authentication. a. Configure the security for local authentication ALSwitch config aaa new-model ALSwitch config aaa authentication login default local b. Configure the local user account with user level access only ALSwitch config username admin password 0 cisco c. Configure a local enable password ALSwitch config enable password enable 5. The next device to be configured will be the Catalyst 4006 L3 Module. From the console port on the L3 module log into the router enter privileged mode clear the NVRAM and then restart. 6. Configure DLRouter including all .
đang nạp các trang xem trước