I am having a heck of time getting a new ACS SE 4.1 configured in a new network. I have one 3560 now that I'm testing first but I can't get authenicated. I have the user account/group set up, the group is matched in my AAA statements although I saw some errors about the group wasn't configured. I even created two different groups and tried different names but still, no luck. I'm just using the internal DB, nothing special. I've read the administration guide but it hasn't helped much. When I turn on debugging, I don't see much activity, only about the group being wrong but I don't understand how that's possible. I'm running short on time, I would really appreciate some help. Thanks in advance!
When we do EXEC authorization, we need to give the exec privileges from ACS/authorization server to the user i.e.,
Under user/group settings look for "Shell(exec)" check this. this should allow you in. If you want that you should also get some privileges directly as you log in, then also check "Privilege Level" and type the value in the box, 0-15.
I recommend referring to,
If this is your first time configuring authorization.
Please rate if this helps!