[tac_plus] Re: Authorization script and before authorization
john heasley
heas at shrubbery.net
Wed May 12 04:57:35 UTC 2010
Wed, May 12, 2010 at 06:34:24AM +0200, Kiss Gabor (Bitman):
> > > > Basically, I need 2 args, the ip of the device where we are trying to
> > > > execute the command ($ip I guess) and the command itself. But I don't
>
>
> > 2? I go in enable and then configure mode.
> > 3? I enter the command no interface GigabitEthernet0/1.114 (for example)
> > 4? When I enter the previous command, I would like to run an authorization
> > script on the no interface command. The script will be on the same host than
>
> Oh I see. :-) "The command to be authorized".
> I guessed you mean a command to execute on TACACS+ server.
>
> > Where $ip should be (I guess) the IP address of the Cisco router.
> > With that sample, I'm still missing the whole command as an argument of my
> > script (/usr/local/bin/script don't know what to check).
> >
> > Do you know how to pass the command as an argument to the script ?
>
> Actually I don't know such a possibility.
> However I think you are able to modify the source code quite easily
> in order to get a new dollar variable.
i think theyre passed on stdin as AVPs arg1...argN.
> Regards
>
> Gabor
>
> --
> E-mail = m-mail * c-mail ^ 2
> _______________________________________________
> tac_plus mailing list
> tac_plus at shrubbery.net
> http://www.shrubbery.net/mailman/listinfo.cgi/tac_plus
More information about the tac_plus
mailing list