ACS 4.x How to make user fall directy to enable mode configuration example
From DocWiki
(Difference between revisions)
m (→ACS cofiguration: Minor corrections for grammar, wording, spelling, formatting) |
|||
| Line 16: | Line 16: | ||
aaa authorization exec default group tacacs+ if-authenticated | aaa authorization exec default group tacacs+ if-authenticated | ||
| - | ==ACS | + | ==ACS Configuration== |
| - | + | To bring users or groups in at privilege level 15: | |
| - | + | # Go to user or group setup in ACS | |
| + | # Drop down to "TACACS+ Settings" | ||
| + | # Place a check in "Shell (Exec)" | ||
| + | # Place a check in "Privilege level" and enter "15" in the adjacent field | ||
| - | + | Now login to the IOS device, and you will fall straight to enable mode | |
| - | + | ||
| - | + | ||
| - | + | ||
| - | + | ||
| - | + | ||
| - | + | ||
| - | Now login to IOS device, you will fall straight to enable mode | + | |
[[Category:Configuration Examples]] | [[Category:Configuration Examples]] | ||
Revision as of 03:07, 20 August 2010
Introduction
How to make user login straight to enable mode on IOS device
IOS Configuration
Router(config)# username [username] password [password]
tacacs-server host [ip]
tacacs-server key [key]
aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization exec default group tacacs+ if-authenticated
ACS Configuration
To bring users or groups in at privilege level 15:
- Go to user or group setup in ACS
- Drop down to "TACACS+ Settings"
- Place a check in "Shell (Exec)"
- Place a check in "Privilege level" and enter "15" in the adjacent field
Now login to the IOS device, and you will fall straight to enable mode
