cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
494
Views
0
Helpful
3
Replies

how to re-authenticate / re-authorization "configure terminal" command ?

jerrytozhang
Level 1
Level 1

Hi,

To aviod our network engineers enter router config mode by accident, we are looking for a way to let ACS server re-authenticate (popup a username & password prompt)users when they enter "configure terminal" command...

Can you guys help me out ?

Thanks,

Jerry

3 Replies 3

Jagdeep Gambhir
Level 10
Level 10

Jerry,

This can be done using command authorization feature where in you can set up what all commands are allowed for any user. Please see this link,

http://cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

Regards,

~JG

Do rate helpful posts

Hi,Jgambhir:

Thanks for your notes.

But my point is that our engineers need full privileges including "config t" on routers to do some modification tasks during a maintenance window.

What I want to do is that when they enter "config t", is there any way on ACS to let routers prompt a username & password to let our engineers re-input their credential before entering router config mode ?

Thanks,

Jerry

Jerry,

I don't think there is any way to achieve that.

Any specific reason why you what that way ?

Regards,

~JG

Do rate helpful posts

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: