文档库
文档库 最新最全的文档下载
当前位置:文档库 › cisco AAA配置

cisco AAA配置

telnet 10.35.2.250
Trying 10.35.2.250 ...
Press CTRL+K to abort
Connected to 10.35.2.250 ...
21Flore_S1>en
Password:
21Flore_S1#sh
21Flore_S1#show run
Building configuration...

Current configuration : 6275 bytes
!
version 12.2
no service pad
service timestamps debug uptime
service timestamps log uptime
no service password-encryption
!
hostname 21Flore_S1
!
boot-start-marker
boot-end-marker
!
enable password cisco
!
aaa new-model
!
!
aaa authentication login default none
aaa authentication dot1x default group radius
aaa authorization network default group radius
aaa accounting update periodic 3 jitter maximum 0
aaa accounting dot1x default start-stop group radius
!
!
!
aaa session-id common
system mtu routing 1500
ip subnet-zero
!
!
!
crypto pki trustpoint HTTPS_SS_CERT_KEYPAIR
enrollment selfsigned
serial-number
revocation-check none
rsakeypair HTTPS_SS_CERT_KEYPAIR
!
!
crypto pki certificate chain HTTPS_SS_CERT_KEYPAIR
certificate self-signed 01
30820267 308201D0 A0030201 02020101 300D0609 2A864886 F70D0101 04050030
43311430 12060355 0403140B 3231466C 6F72655F 53312E31 2B300F06 03550405
13083443 31464633 38303018 06092A86 4886F70D 01090216 0B323146 6C6F7265
5F53312E 301E170D 39333035 32323033 34393232 5A170D32 30303130 31303030
3030305A 30433114 30120603 55040314 0B323146 6C6F7265 5F53312E 312B300F
06035504 05130834 43314646 33383030 1806092A 864886F7 0D010902 160B3231
466C6F72 655F5331 2E30819F 300D0609 2A864886 F70D0101 01050003 818D0030
81890281 8100997D 9BC3055C C880A50B 1B877F0E 2CAF97AA AB7B3326 18CD600B
0FDF7A60 391C1E41 01D03C79 1FE1C403 2169C0C5 D29625FE 8C89ADEA E07F6332
F7E265E8 2AE289AF 61E90C25 CA6327E4 1B9A5CDB 92AF0004 679ADBC2 EF2951D9
4048147C 529F01F6 7F163B44 00BD37B4 F4BFB049 62E53807 DB15DE7B CF144EF2
32025031 5BDD0203 010001A3 6B306930 0F060355 1D130101 FF040530 030101FF
30160603 551D1104 0F300D82 0B323146 6C6F7265 5F53312E 301F0603 551D2304
18301680 148D2A31 33F5C037 1A7BB39D 95B18146 2C7C84D4 CD301D06 03551D0E
04160414 8D2A3133 F5C0371A 7BB39D95 B181462C 7C84D4CD 300D0609 2A864886
F70D0101 04050003 8181003B 8E7AEEB2 23168963 F8AF6E04 FA686EEB F07F568E
174C5ACE 44A673E4 864CF939 64D2621A DAD68053 E30BF150 F280A105 0CE1D02F
4320827B 939F5411 76A81576 E72E478D BB9CE265 920A8C27 4CA75C10 C553CFC0
DA909DA8 DB206844 B278AE8F 0EF96F1E 44E9B495 FCAB2591 286FF822 715EC97D
29E671B3 9E9612FA 3B5180
quit
!
!
dot1x system-auth-control
dot1x guest-vlan supplicant
!
!
!
!
spanning-tree mode mst
spanning-tree extend system-id
!
spanning-tree mst configuration
name FJDL
!
!
vlan internal allocation policy ascending
!
!
!
interface Loopback0
no ip address
no ip route-cache
!
interface GigabitEthernet0/1
switchport mode access
!
interface GigabitEthernet0/2
switchport mode access
!
interface GigabitEthernet0/3
switchport mode access
!
interfac

e GigabitEthernet0/4
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
spanning-tree portfast
!
interface GigabitEthernet0/5
switchport mode access
!
interface GigabitEthernet0/6
switchport mode access
!
interface GigabitEthernet0/7
switchport mode access
!
interface GigabitEthernet0/8
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
spanning-tree portfast
!
interface GigabitEthernet0/9
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
spanning-tree portfast
!
interface GigabitEthernet0/10
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
spanning-tree portfast
!
interface GigabitEthernet0/11
switchport mode access
!
interface GigabitEthernet0/12
switchport mode access
!
interface GigabitEthernet0/13
switchport mode access
!
interface GigabitEthernet0/14
switchport mode access
!
interface GigabitEthernet0/15
switchport mode access
!
interface GigabitEthernet0/16
switchport mode access
!
interface GigabitEthernet0/17
switchport access vlan 17
switchport mode access
!
interface GigabitEthernet0/18
switchport mode access
!
interface GigabitEthernet0/19
switchport access vlan 2
switchport mode access
!
interface GigabitEthernet0/20
switchport access vlan 2
switchport mode access
!
interface GigabitEthernet0/21
switchport access vlan 2
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
spanning-tree portfast
!
interface GigabitEthernet0/22
switchport access vlan 2
switchport mode access
!
interface GigabitEthernet0/23
description TO_23F_S2
switchport access vlan 2
switchport trunk allowed vlan 2
switchport mode trunk
!
interface GigabitEthernet0/24
description TO_22F_S2
switchport access vlan 2
switchport trunk allowed vlan 2
switchport mode trunk
!
interface GigabitEthernet0/25
switchport mode access
dot1x pae authenticator
dot1x port-control auto
dot1x violation-mode protect
dot1x timeout quiet-period 10
dot1x timeout tx-period 15
dot1x max-req 1
dot1x guest-vlan 1
spanning-tree portfast
!
interface GigabitEthernet0/26
!
interface GigabitEthernet0/27
!
interface GigabitEthernet0/28
!
interface GigabitEthernet0/29
!
interface GigabitEthernet0/30
!
interface GigabitEthernet0/31
!
interface GigabitEthernet0/32
!
interface GigabitEthernet0/33
!
interface GigabitEthernet0/34
!
interface GigabitEthernet0/35
!
interface GigabitEthernet0/36
!
interface GigabitEthernet0/37
!
interface GigabitEthernet0/38
!
interface GigabitEthernet0/39
!
interface GigabitEthernet0/40
!
interface GigabitEthernet0/41
!
interface GigabitEthernet0/42
!
interface GigabitEthernet0/43
description TO_23F_S2
switchport access vlan 2
swi

tchport mode trunk
!
interface GigabitEthernet0/44
description TO_22F_S2
switchport trunk allowed vlan 1
switchport mode trunk
!
interface GigabitEthernet0/45
switchport mode trunk
!
interface GigabitEthernet0/46
!
interface GigabitEthernet0/47
switchport mode trunk
!
interface GigabitEthernet0/48
!
interface Vlan1
ip address 10.35.2.250 255.255.255.0
no ip route-cache
!
ip default-gateway 10.35.2.254
ip http server
ip http secure-server
snmp-server group group v1
snmp-server community public RO
snmp-server community private RW
radius-server host 10.35.4.10 auth-port 1812 acct-port 1813
radius-server source-ports extended
radius-server key imc
!
control-plane
!
!
line con 0
password cisco
line vty 0 4
password cisco
line vty 5 15
!
end


相关文档
相关文档 最新文档

侵权投诉  © 2013-2023 www.wendangku.net  站点地图 | 手机版

闽ICP备11023808号-7  本站文档均来自互联网及网友上传分享,本站只负责收集和整理,有任何问题可通过上访投诉通道进行反馈