Logging directly into enable mode on a PIX using TACACS

Unanswered Question
Apr 10th, 2007

I have setup TACACS authentication on a PIX running 6.3(3). I can authenticate using TACACS just fine, but do not get put directly into enable mode. The ACS server is setup to do so, it works for routers and switches, but not the PIX box. If I put the "aaa authentication enable console TACACS" in the config I must enter the enable command and use the same password I logged in with to get into enable mode. Without the command, I have to use the configured enable secret password to get into the enable mode.

Does anyone know it there is a way to configure the PIX to log someone directly into enable mode via TACACS?

Thanks in advance

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Vivek Santuka Thu, 04/12/2007 - 05:48

Hi,

PIX does not support exec authorization. Hence user cannot login to level 15 directly.

Regards,

Vivek

Actions

This Discussion