Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Bypass need for enable password?

How do you let a user acutomatically go to enable mode without the enable password? We are using aaa new-model authentication with local non-tacacs logins. All of the admins have their own username/pass to login, but I'd like to bypass the need to hand out the enable password to everybody. I'm pretty sure I remember being able to grant people with level 15 access direct access to enable commands, but don't remember how.

aaa new-model
aaa authentication login default local enable

username john privilege 15 password 7 ...........

  • LAN Switching and Routing
2 REPLIES
Hall of Fame Super Bronze

Re: Bypass need for enable password?

You need authorization, something like this:

aaa authorization exec default local if-authenticated

New Member

Re: Bypass need for enable password?

3891
Views
5
Helpful
2
Replies
This widget could not be displayed.