[tac_plus] Cisco Nexus Authorization problem
John Fraizer
john at op-sec.us
Thu Aug 6 22:53:43 UTC 2015
I'm not sure when this command became available in EOS but, at least in
4.14.5F, you will get what you want with:
aaa authorization commands all default group tacacs+ none
--
John Fraizer
LinkedIn profile: http://www.linkedin.com/in/johnfraizer/
On Thu, Aug 6, 2015 at 1:58 PM, <Kevin.Cruse at instinet.com> wrote:
> tried that! arista only takes this command with no arguments:
>
> aaa authorization config-commands
>
> it still didn't work.
>
> fyi - i just tried same config with cisco router and it works perfectly,
> running 4.13.11M of EOS.
>
>
>
> From: Daniel Schmidt <daniel.schmidt at wyo.gov>
> To: Kevin.Cruse at instinet.com,
> Cc: Aaron Wasserott <aaron.wasserott at viawest.com>,
> "tac_plus at shrubbery.net" <tac_plus at shrubbery.net>
> Date: 08/06/2015 04:09 PM
> Subject: Re: [tac_plus] Cisco Nexus Authorization problem
>
>
>
> This part of the email looks interesting:
>
> But if you
> want them in conf t mode but restrict their commands at that level, you
> need to enable something like this:
>
> aaa authorization config-commands default group myTacacsGroup local
>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://www.shrubbery.net/pipermail/tac_plus/attachments/20150806/82c468ff/attachment.html>
More information about the tac_plus
mailing list