Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Selected Shell Profile is DenyAccess

HI Experts

i have got the below long on the acs 5.2,one the vpn client user connect to asa 5510

Description

Selected Shell Profile is DenyAccess

Resolution Steps

Check whether the Device Administration Authorization Policy rules are correct

2 REPLIES
Cisco Employee

Selected Shell Profile is DenyAccess

The message you have posted says that since the user request is hitting an authorization policy where shell profile is set as deny access. This could be a default shell profile. I would suggest if you can go to access-policies > edit the authorization policy and change the shell profile to permit access.

If you're unsure which authorization policy this user is trying to connect then go to the logs and click on the magnifyng glass that would give you detailed information about the poicy being used.

let me knnow if you need any further help.

Regards,

Jatin

Do rate helpful posts-

~BR Jatin Katyal **Do rate helpful posts**

I followed the above steps

I followed the above steps but still no luck. i've set the privilege level to 15. But still isnt working.

 

when i click the magnifying glass it says "authentication passed" but still not able to get into the switch via tacacs

3829
Views
1
Helpful
2
Replies