• Все разделы
  • Статьи
  • Медиа
  • Новости
  • Нормативные материалы
  • Конференции
  • Глоссарий

local-user allow-aaa-authentication

Карточка уязвимости

Характеристики уязвимости

Уровень опасности
Оценка CVSS
Производитель ПО
Наименование ПО
Cisco ASR (AAA)
Описание
Local-user administrative accounts are separate from other administrative user accounts configured at the context level (Security Administrator, Administrator, Operator, and Inspector).
Context-level administrative users rely on the system‘s AAA subsystems for validating user names and
passwords during login. This is true for both administrative user accounts configured locally through a
configuration file or on an external RADIUS server.
Since the T1.276-2003 password security mechanisms are supported only for local-user administrative
accounts and not for the AAA-based administrative accounts, this command provides a mechanism for
disabling AAA-based administrative accounts.
By default, AAA-based administrative accounts are allowed.
Как исправить
The following command forces the system to authenticate local-user accounts based only on the information in the security account file on its CompactFlash:
no local-user allow-aaa-authentication
Ссылки