Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1352
Views
0
Helpful
2
Replies

command authorization issue

Go to solution
kyoung77
Level 1
Level 1

‎09-10-2009 06:15 AM - edited ‎03-10-2019 04:40 PM

Have been able to restrict access to certain interfaces through command authorization but when I try to allow access to shutdown or no shutdown arguments ACS report "unknown command" in logs and command auth fails. If it is an error with syntax log reports "command denied" so I don't think that's the problem. Am I adding argument to the correct command, for instance:

Ethernet -> permit shutdown

Any suggestions?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎09-10-2009 06:24 AM

Hi,

This is what you need to define under shell command authorization

Unmatched command >> Permit unmatched arg

no -- Permit shutdown

shutdown -- Permit

NOTE: Do not check permit Unmatched args for above args.

HTH

Regards

JK

~Jatin

View solution in original post

0 Helpful
2 Replies 2

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎09-10-2009 06:24 AM

Hi,

This is what you need to define under shell command authorization

Unmatched command >> Permit unmatched arg

no -- Permit shutdown

shutdown -- Permit

NOTE: Do not check permit Unmatched args for above args.

HTH

Regards

JK

~Jatin
0 Helpful

Go to solution
kyoung77
Level 1
Level 1
In response to Jatin Katyal

‎09-10-2009 06:48 AM

Worked like a charm!

Thanks!

0 Helpful
Customers Also Viewed These Support Documents