ACS 4.x How to make user fall directy to enable mode configuration example

(Difference between revisions)

Revision as of 23:04, 3 June 2010

How to make user login straight to enable mode on IOS device

Router(config)# username [username] password [password]

tacacs-server host [ip]

tacacs-server key [key]

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ if-authenticated

Bring users/groups in at level 15

1. Go to user or group setup in ACS

2. Drop down to "TACACS+ Settings"

3. Place a check in "Shell (Exec)"

4. Place a check in "Privilege level" and enter "15" in the adjacent field

Now login to IOS device, you will fall straight to enable mode

Rating: 4.0/5 (4 votes cast)

@@ Line 1: / Line 1: @@
-{{Template:Required Metadata}}
 ==Introduction==
+How to make user login straight to enable mode on IOS device
-<!--How to make user login straight to enable mode on IOS device-->
+==IOS Configuration==
+Router(config)# username [username] password [password]
-==Configuration==
-<!--Router(config)# username [username] password [password]
 		tacacs-server host [ip]
 		tacacs-server key [key]
 		aaa new-model
 		aaa authentication login default group tacacs+ local
-		aaa authorization exec default group tacacs+ if-authenticated-->
+		aaa authorization exec default group tacacs+ if-authenticated
 ==ACS cofiguration==
 Bring users/groups in at level 15
 .  Go to user or group setup in ACS
 .  Drop down to "TACACS+ Settings"
 .  Place a check in "Shell (Exec)"
-.  Place a check in "Privilege level" and enter "15" in the adjacent field
+.  Place a check in "Privilege level" and enter "15" in the adjacent field
-<!--Now login to IOS device, you will fall straight to enable mode >
-=
+Now login to IOS device, you will fall straight to enable mode