[tac_plus] ASA tac_plus
Guy Morrell
guy.morrell at oucs.ox.ac.uk
Mon Nov 3 17:11:35 UTC 2008
Hi everyone,
I'm trying to get our 5540 to work with tac_plus, which I have
partially succeeded in doing.
My config so far is:
aaa-server tac_plus protocol tacacs+
aaa-server tac_plus (<int>) host foo
key bar
aaa authentication match LOGIN <int> tac_plus
aaa authentication ssh console data-tacacs LOCAL
aaa authorization exec authentication-server
The issue is, that with our IOS kit, we go directly to enable
privilege. I'd like to have the same setup on the ASA.
Server side config is like this:
user = auser {
default service = permit
login = des <snip>
service = exec {
priv-lvl = 15
}
}
If anyone knows how to get this working I'd be much obliged if they'd
share the knowledge!
Many thanks,
Guy
More information about the tac_plus
mailing list