Hi, I justed installed ACS 4.1 for Windows, I've added a user account and a router, my router can communicate with the ACS server, I can authenticate to the router, but my authentication will not take me into enable (or priviledge) mode. It takes me right to the user mode. From the server I tried granting priv 15 to my user group and also to me as a user still doesn't work. I have the basic configuration on the router
aaa authentication login susd group tacacs+ local
tacacs-server host 10.x.x.x
tacacs-server key xxxx
Can someone help a rookie out.
Ah I guess you're using a named authorization method rather than the default one which is why it need applying to the VTY lines. The default method would apply to all lines where not already configured.
Enter configuration commands, one per line. End with CNTL/Z.
ROUTER(config)#line vty 0 4
ROUTER(config-line)#privilege level 15