I have Cisco ACS installed for Cisco switches.Any time,the user logs in to device,it gets authorized from ACS.
Today, i found that through local console also,the authorization from AAA is taking place.
I fear that if my AAA goes down tomarrw,all the device access will be locked up.
Kindly tell me what command i need to put in device so that it does the authorization locally only while comnecting through local console.
The AAA comands in the devices are :
aaa group server tacacs+ ACS_Group1
aaa authentication login default group ACS_Group1 local
aaa authentication enable default group ACS_Group1 enable
aaa authorization config-commands
aaa authorization exec default group ACS_Group1 if-authenticated
aaa authorization exec ACS_Group1 group tacacs+ local
aaa authorization commands 1 default group tacacs+ if-authenticated
aaa authorization commands 15 default group tacacs+ if-authenticated
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
Require your help immediately!!