Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
337
Views
0
Helpful
2
Replies

authorization

alexey.sazhin
Level 1
Level 1

‎07-01-2014 02:01 PM

Hi all

What is the reason for command aaa authorization exec in IOS XR?

Command reference states that:

exec

Configures authorization for an interactive ( EXEC) session.

What does it mean "interactive" session and in what situation could it be helpful? If  IOS XR doesn't has enable mode...

___

TIA, Alex

Labels:
0 Helpful
2 Replies 2

Alexei Kiritchenko
Cisco Employee
Cisco Employee

‎07-06-2014 11:21 AM

Hi Alex,

EXEC mode is still EXEC mode as in IOS regardless the fact if it is privileged (enable) or not. 

Treat it similar as in IOS.

Regards,

/A

0 Helpful

xthuijs
Cisco Employee
Cisco Employee
In response to Alexei Kiritchenko

‎07-07-2014 05:32 AM

Wanted to add one more piece of detail:

the authorization phase of the exec session allows you to pass on, or use the received session parameters such as privilege level, task-group and all that.

Although priv-level in XR doesn't truly exist, in XR priv-lvl is merely a task group with permissions.

More detail on how to set it up can be found here:

https://supportforums.cisco.com/document/61306/asr9000xr-using-task-groups-and-understanding-priv-levels-and-authorization

The context of an "interactive" session is merely just a CLI with the device.

regards

xander

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents