Wireless Access

Contributor I

Remote and Local Management

We would like to disable local user remote login via ssh/telnet and only allow TACACS remote login. Is the correct method just to disable "Allow Local Authentication?" we would want to be able to login locally with root/admin if the network is down still.


Re: Remote and Local Management

Yes, if you disable that setting, only authentications from your external server (RADIUS/TACACS+) are allowed.   If the external server is not reachable (no response/timeout), local authentication is allowed.

Systems Engineer, Northeast USA

Contributor I

Re: Remote and Local Management

So this seemed to work the way I guess it should have but now we can't have our front desk users login to do guest provisioning. Is there any way to limit remote logins to just guest provision users and not the admin/root ones?

Search Airheads
Showing results for 
Search instead for 
Did you mean: