I am trying to configure a user to authenticate using a Cisco ACS v4.1. The user will require access to a Cisco ACE module using a specific role and domain. In order to do this I need to add the following to the TACACS custom attribuets: "shell:development=Server-Maintenance dba". The user also should be able to authenticate and access routers and switches at privilege level 15.
If I leave the custom attributes out, the user can access the router/switches, but not the ACE. If I add the custom attributes in, the user can access the ACE but not the routers/switches.
What do I need to do to be able to access both with the same account??