TACACs levels on NXOS, + minor AAA config equivalents?
When you log into a NXOS box, you appear to get the highest role your account has provisioned- there doesn't seem to be the 'exec/enable' dichotomy that our users are familiar (and comfortable with).
Is there a way to make the NXOS boxes have you come in as a network-operator, and then force another login to network-admin? With increased attention being paid to changes at a network level, sometimes it's nice to have that forced reminder that you need to escalate your privliges.
There are a few commands that exist in our legacy configurations that don't port well to the NXOS boxes as well-
aaa authentication username-prompt
aaa authentication fail-message
aaa accounting-commands xxxx start-stop xxx
Maybe start-stop is a relic now and pertains more to dialup accounting- but it's one of those magic configs that's made it into our standard and I hate to change it now. Customized login and fail-messages were nice, though.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...