I'm having an issue getting to enable mode using Cisco Secure ACS 4.2 for authentication using RADIUS (not TACACS+). I've added a user to ACS who is able to log into the switch just fine and I added the $enab15$ user to get to enable mode. The question I have is this, is there a way to set up a radius user to authenticate directly to without having to use the $enab15$ account? I know I can make it work with TACACS+ but that is not an option in this case.
I have this problem too.