ACS 4.x How to make user fall directy to enable mode configuration example

From DocWiki

Revision as of 03:07, 20 August 2010 by Mikecrowe4ics (Talk | contribs)
Jump to: navigation, search


How to make user login straight to enable mode on IOS device

IOS Configuration

Router(config)# username [username] password [password]

tacacs-server host [ip]

tacacs-server key [key]

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ if-authenticated

ACS Configuration

To bring users or groups in at privilege level 15:

  1. Go to user or group setup in ACS
  2. Drop down to "TACACS+ Settings"
  3. Place a check in "Shell (Exec)"
  4. Place a check in "Privilege level" and enter "15" in the adjacent field

Now login to the IOS device, and you will fall straight to enable mode

Rating: 4.4/5 (11 votes cast)

Personal tools