Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Aironet 1130 web gui users

Hi there

I would like to have two different users for the aironet 1130 cli and web access. At the moment there is userA with a given password. When I want to logon to the web gui I have to use userA with the enable secret password.

Now I want to create a userB with a password and privilege level 15. userA and userB should logon to the web gui with THEIR passwords and not the global enable secret password. If I configure ip http authentication aaa, the login popup shows always level_1 or view_access, where I can logon with both users. When I want to reconfigure something, it shows the login popup with level_15.

How can I configure, that it initialy shows the level_15 instead of level_1?

Thanks a lot in advance

Dominic

1 ACCEPTED SOLUTION

Accepted Solutions
Hall of Fame Super Gold

Re: Aironet 1130 web gui users

4 REPLIES
Community Member

Re: Aironet 1130 web gui users

Dominic,

I think I have exactly the same issue as you. Ive also configured ip http authentication aaa and I now only get "level_1 or view_access" when browsing to the AP. I want to get access to the full configuration web menu but I can't figure out how to do so.

You mention "When I want to reconfigure something, it shows the login popup with level_15." How do you do this ?

Can you post your solution if you manage to figure it out ? I'll do likewise...

Tom

Hall of Fame Super Gold

Re: Aironet 1130 web gui users

Community Member

Re: Aironet 1130 web gui users

Thanks Dominic but I dont think the link is applicable as its mentioning CLI based accessS

I'm using TACACS ( actually tac_plus http://www.shrubbery.net/tac_plus/ ) and when I log in to the CLI I connect
with priviledge 15 as configured in TACACS

cisco-1130ag#sh user
    Line       User       Host(s)              Idle       Location
*  1 vty 0     admin      idle                 00:00:00   10.0.0.250

  Interface    User               Mode         Idle     Peer Address

cisco-1130ag#sh priv
Current privilege level is 15
cisco-1130ag#

tac_plus.conf

group = admins {
        default service = permit
        service = exec {
        priv-lvl = 15
        }
}
user = admin {
member = admins
        login = des xxxxxxxx
}


But with the same user via the http interface Im assigned to priviledge level 1.

cisco-1130ag#deb ip http auth
HTTP Server Authentication debugging is on
cisco-1130ag#
Feb 12 16:19:51.670: HTTP AAA picking up console Login-Authentication List name: default
Feb 12 16:19:51.671: HTTP AAA picking up console Exec-Authorization List name: default
Feb 12 16:19:51.700: HTTP: Priv level authorization success priv_level: 1


My question still stands. How do I get access to the full aironet web configuration interface when using TACACS ???

Thanks in advance to anyone who can answer my query.........

Rgds
Tom

Community Member

Re: Aironet 1130 web gui users

Hi Tom

I didn't post any link ;-)

Regards

Dominic

2038
Views
0
Helpful
4
Replies
CreatePlease to create content