Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1645
Views
0
Helpful
2
Replies

ACS 4.2 TACACS+ privilege level

msurget.orange
Level 1
Level 1

‎07-28-2010 05:44 AM - edited ‎03-10-2019 05:17 PM

Hi,

Most of devices use privilege level 15 for TACACS+ administration (Extreme, Cisco...), but we have devices that require privilege level 6 in order to have admin rights (Nortel Passport 8606).

So i would like to know if its possible to allow different TACACS+ privilege level for the a user group according to the device type (considering that the priviliege level setup is in the user group tab)

Regards

Labels:
0 Helpful
2 Replies 2

Javier Henderson
Level 4
Level 4

‎07-28-2010 01:50 PM

Will the Nortel box accept priv-lvl=15 in lieu of 6?

You cannot assig a privilege level based on the device name or IP address, those are assigned at the user or group level.

ACS 5 does let you do this sort of granular level assignment, however.

0 Helpful

msurget.orange
Level 1
Level 1
In response to Javier Henderson

‎07-29-2010 12:07 AM

No, Nortel doesn't accept priv-lvl 15, have you any idea how to solve this issue ?

We already did a downgrade of the ACS 5.1 because of a AD problem.

0 Helpful
Customers Also Viewed These Support Documents