ACS 4.x How to make user fall directy to enable mode configuration example

From DocWiki

(Difference between revisions)
Jump to: navigation, search
(New page: {{Template:Required Metadata}} ==Introduction== <!--How to make user login straight to enable mode on IOS device--> ==Configuration== <!--Router(config)# username [username] password ...)
Line 1: Line 1:
-
{{Template:Required Metadata}}
 
-
 
==Introduction==
==Introduction==
 +
How to make user login straight to enable mode on IOS device
-
<!--How to make user login straight to enable mode on IOS device-->
 
 +
==IOS Configuration==
 +
Router(config)# username [username] password [password]
-
==Configuration==
 
-
 
-
<!--Router(config)# username [username] password [password]
 
tacacs-server host [ip]
tacacs-server host [ip]
 +
tacacs-server key [key]
tacacs-server key [key]
 +
aaa new-model
aaa new-model
 +
aaa authentication login default group tacacs+ local
aaa authentication login default group tacacs+ local
-
aaa authorization exec default group tacacs+ if-authenticated-->
+
 
 +
aaa authorization exec default group tacacs+ if-authenticated
==ACS cofiguration==
==ACS cofiguration==
 +
Bring users/groups in at level 15
Bring users/groups in at level 15
 +
1.  Go to user or group setup in ACS
1.  Go to user or group setup in ACS
 +
2.  Drop down to "TACACS+ Settings"
2.  Drop down to "TACACS+ Settings"
 +
3.  Place a check in "Shell (Exec)"
3.  Place a check in "Shell (Exec)"
-
4.  Place a check in "Privilege level" and enter "15" in the adjacent field
 
-
 
+
4.  Place a check in "Privilege level" and enter "15" in the adjacent field
-
<!--Now login to IOS device, you will fall straight to enable mode >
+
-
=
+
Now login to IOS device, you will fall straight to enable mode

Revision as of 23:04, 3 June 2010

Introduction

How to make user login straight to enable mode on IOS device


IOS Configuration

Router(config)# username [username] password [password]

tacacs-server host [ip]

tacacs-server key [key]

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ if-authenticated

ACS cofiguration

Bring users/groups in at level 15

1. Go to user or group setup in ACS

2. Drop down to "TACACS+ Settings"

3. Place a check in "Shell (Exec)"

4. Place a check in "Privilege level" and enter "15" in the adjacent field


Now login to IOS device, you will fall straight to enable mode

Rating: 4.4/5 (7 votes cast)

Personal tools