I am running ACS 5.1 and having some internal users created under Users and Identity Stores.
I can specify the user and password (which works fine), but I can also specify an enable password.
This enable password does not work as to enter privilege mode on the router.
example, I can log in via telnet using the ACS local user, but always
have to use the enable password locally defined on the router (not the
enable password for that user defined on the ACS).
What's the purpose of this enable password option on the ACS?
In our data center we are using enable mode password as the same password for login at the first time,so we have configured the following command to accept the same and also configured few setting under user to take the same password PAP for enable password also the same.So login and enable password for users is the same which is configured in internal user database of ACS.
aaa authentication login default group tacacs+ line aaa authentication enable default group tacacs+ enable
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...