
Securing your Remote Access Network • Chapter 8 365
no ip classless
no ip http server
!
dialer-list 1 protocol ip permit
!
! specify the IP address of the TACACS+ server to be used
tacacs-server host 10.26.2.1
! specify the shared secret to used by the TACACS+ server and NAS
tacacs-server key rabbit
!
line con 0
transport input none
line aux 0
line vty 0 4
password forward
transport input lat pad v120 mop telnet rlogin udptn nasi
!
end
The configuration above will use the TACACS+ server at address
10.26.2.1 for all authentication, authorization, and accounting processes.
If a user dials in on BRI0/0, the ‘general’ authentication method-list will be
used to authenticate ...