7.1 & 7.2 - AAA
I am just wondering if lines:
aaa authentication exec default if-authenticated
aaa authentication login NO_AUTH none
line con 0
login authentication NO_AUTH
in task 7.1 are really needed.
authentication exec is not needed because we have "privilege level 15" on line con 0 in initial configs,
NO_AUTH does nothing - with/without this command on my router I have instead priv15 access on console line.
Also I think that in task 7.2 command "aaa authentication login default local" is not needed. It breaks console authentication (task states that only telnet users should be affected) and it should be replaced by "no aaa authentication login default line" - to just remove authentication scheme needed by 7.1 (tasks are dependent). Also nobody said that we can create additional user on this.
In my configuration:
Rack1R6#sh run | i aaa
aaa authentication attempts login 1
aaa authentication fail-message ^CAuthentication failed. Username or password was Incorrect.^C
aaa authentication password-prompt "Passcode: "
aaa authentication username-prompt "Login Name:"
I can log in/out console without any credentials:
Rack1R6 con0 is now available
Press RETURN to get started.
and when I use telnet everything is as it should be:
Trying 126.96.36.199 ... Open
User Access Verification
Authentication failed. Username or password was Incorrect.
[Connection to 188.8.131.52 closed by foreign host]
Is that okay or I miss something important?