View Full Version : Cisco AAA confusion!

25-08-2010, 03:06 PM

I'm playing around with a Cisco 2600 router and I don't quite understand the whole AAA thing. I've set up the router with SSH login.

What does this command do:

aaa authentication login LOCAL_LIST local

Also, on the console/telnet lines:

line con 0
login authentication LOCAL-LIST

The router does have a local username/password set up but I do not see how that username/password relates to the LOCAL-LIST I've created. Everything is working though.

Someone please explain :)

25-08-2010, 03:19 PM
As far as I'm aware the first command you have listed would enable AAA for local logins, based on a method called LOCAL_LIST. You may want to have a read through some of Cisco's IOS documentation, such as this (http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfathen.html#wp1023869).

25-08-2010, 06:19 PM
But whats the point of AAA?

If i just created a user with 'username xxx password yyy' and set 'login local' on the vty/console line it would still work and that is without using the aaa command.