AAA for Cat OS switch

Answered Question
May 5th, 2008

Hi,

I having a problem on how to create a Shell command authorization for my Cat OS switches. My ACS version is 3.3

Appreciate you help

Thanks,

Jong

I have this problem too.
0 votes
Correct Answer by Jagdeep Gambhir about 8 years 7 months ago

Jong,

Here are the CAT OS commands,

Set Based -

Console> (enable) set tacacs server [IP] [primary]

set tacacs key [key]

set tacacs attempts [number] (optional)

set localuser user [user] password [password] privilege 15

set authentication login local enable

set authentication login tacacs enable [all | console | http | telnet] [primary]

set authorization exec enable tacacs+ [deny | none] [console | telnet | both]

set authorization commands enable [config | all] tacacs+ [deny | none] [console |

telnet | both]

Here is the link for setting up command authorization , this example is for IOS but it you understand the concept, you should be able to set it up on CAT OS.

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

Regards,

~JG

Do rate helpful posts

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jagdeep Gambhir Tue, 05/06/2008 - 04:59

Jong,

Here are the CAT OS commands,

Set Based -

Console> (enable) set tacacs server [IP] [primary]

set tacacs key [key]

set tacacs attempts [number] (optional)

set localuser user [user] password [password] privilege 15

set authentication login local enable

set authentication login tacacs enable [all | console | http | telnet] [primary]

set authorization exec enable tacacs+ [deny | none] [console | telnet | both]

set authorization commands enable [config | all] tacacs+ [deny | none] [console |

telnet | both]

Here is the link for setting up command authorization , this example is for IOS but it you understand the concept, you should be able to set it up on CAT OS.

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

Regards,

~JG

Do rate helpful posts

jong_r0602 Tue, 05/06/2008 - 18:36

HI JG,

Wow! It works also in my CAT OS switches.

Thanks a alot,

Jong

Actions

This Discussion