ACS 4.x How to make user fall directy to enable mode configuration example

From DocWiki

(Difference between revisions)
Jump to: navigation, search
m (ACS cofiguration: Minor corrections for grammar, wording, spelling, formatting)
Line 16: Line 16:
aaa authorization exec default group tacacs+ if-authenticated
aaa authorization exec default group tacacs+ if-authenticated
-
==ACS cofiguration==
+
==ACS Configuration==
-
Bring users/groups in at level 15
+
To bring users or groups in at privilege level 15:
-
1.  Go to user or group setup in ACS
+
# Go to user or group setup in ACS
 +
# Drop down to "TACACS+ Settings"
 +
# Place a check in "Shell (Exec)"
 +
# Place a check in "Privilege level" and enter "15" in the adjacent field
-
2.  Drop down to "TACACS+ Settings"
+
Now login to the IOS device, and you will fall straight to enable mode
-
 
+
-
3.  Place a check in "Shell (Exec)"
+
-
 
+
-
4.  Place a check in "Privilege level" and enter "15" in the adjacent field
+
-
 
+
-
 
+
-
Now login to IOS device, you will fall straight to enable mode
+
[[Category:Configuration Examples]]
[[Category:Configuration Examples]]

Revision as of 03:07, 20 August 2010

Introduction

How to make user login straight to enable mode on IOS device


IOS Configuration

Router(config)# username [username] password [password]

tacacs-server host [ip]

tacacs-server key [key]

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ if-authenticated

ACS Configuration

To bring users or groups in at privilege level 15:

  1. Go to user or group setup in ACS
  2. Drop down to "TACACS+ Settings"
  3. Place a check in "Shell (Exec)"
  4. Place a check in "Privilege level" and enter "15" in the adjacent field

Now login to the IOS device, and you will fall straight to enable mode

Rating: 4.4/5 (7 votes cast)

Personal tools