Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
598
Views
5
Helpful
1
Replies

Logging directly into enable mode on a PIX using TACACS

jwheat
Level 1
Level 1

‎04-10-2007 10:46 AM - edited ‎03-10-2019 03:05 PM

I have setup TACACS authentication on a PIX running 6.3(3). I can authenticate using TACACS just fine, but do not get put directly into enable mode. The ACS server is setup to do so, it works for routers and switches, but not the PIX box. If I put the "aaa authentication enable console TACACS" in the config I must enter the enable command and use the same password I logged in with to get into enable mode. Without the command, I have to use the configured enable secret password to get into the enable mode.

Does anyone know it there is a way to configure the PIX to log someone directly into enable mode via TACACS?

Thanks in advance

Labels:
0 Helpful
1 Reply 1

Vivek Santuka
Cisco Employee
Cisco Employee

‎04-12-2007 05:48 AM

Hi,

PIX does not support exec authorization. Hence user cannot login to level 15 directly.

Regards,

Vivek

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents