Authentication and Authorization are two separate things in TACACS+, before you can get to authorization you need to successfully authenticate first. Your Command Authorization settings are not related to your authentication settings.
Once you are authenticated, the ACS will use the Command Authorization information configured in your ACS group, if you are not getting assigned the right authorization profile could be because you are not getting assigned into the right ACS group which points to a Group Mapping issue, however it will be a good idea if you can share more information with us like the failed/passed authentication, in which group your Command Authorization set is configured, how is your Group Mapping configured, etc.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...