Routing

 View Only
last person joined: 3 days ago 

Ask questions and share experiences about ACX Series, CTP Series, MX Series, PTX Series, SSR Series, JRR Series, and all things routing, including portfolios and protocols.

  • 1.  backup routing engine authenticate from in-band interface

    Posted 11-09-2023 03:44
    Hi! Experts
    Just want to confirm if Juniper backup routing engine could authenticate users from in-band interface like ge-0/0/0 to the AAA server?
    If not,  do we have a solution? The scenario is MX960 with dual RE and no OOB network. But need to authenticate users login to backup RE from AAA.
    Thanks for your great help.
     


  • 2.  RE: backup routing engine authenticate from in-band interface

    Posted 01-25-2024 08:18

    Hi,

    if there will be no OOB, the only way to connect to backup RE is via master RE

    https://www.juniper.net/documentation/en_US/junos/topics/reference/command-summary/request-routing-engine-login.html

    So you have to ensure AAA is working to your master RE,  after this, you can play with "Roles and/or allowed commands" to ensure that only specific "users/roles" can issue this command.

    BR



    ------------------------------
    Andrei Cebotareanu
    ------------------------------

    Original Message