Cisco WS-C2960-24PC-L Software Guide - Page 488
Enabling TACACS+ Authorization, option, fallbackoption
UPC - 882658169328
View all Cisco WS-C2960-24PC-L manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 488 highlights
Configuring Authorization Chapter 30 Configuring Switch Access Using AAA Enabling TACACS+ Authorization To enable TACACS+ authorization on the switch, perform this task in privileged mode: Step 1 Step 2 Step 3 Step 4 Task Command Enable authorization for normal login mode. Enter the console or telnet keywords if you want to enable authorization only for console port or Telnet connection attempts. Enter the both keyword to enable authorization for both console port and Telnet connection attempts. set authorization exec enable {option} {fallbackoption} [console | telnet | both] Enable authorization for enable mode. Enter the console or telnet keywords if you want to enable authorization only for console port or Telnet connection attempts. Enter the both keyword to enable authorization for both console port and Telnet connection attempts. set authorization enable enable {option} {fallbackoption} [console | telnet | both] Enable authorization of configuration commands. Enter the console or telnet keywords if you want to enable authorization only for console port or Telnet connection attempts. Enter the both keyword to enable authorization for both console port and Telnet connection attempts. set authorization commands enable {config | all} [option} {fallbackoption} [console | telnet | both] Verify the TACACS+ authorization configuration. show authorization This example shows how to enable TACACS+ EXEC mode authorization for both console and Telnet connections. Authorization is configured with the tacacs+ option. The fallback option is deny. Console> (enable) set authorization exec enable tacacs+ deny both Successfully enabled enable authorization. Console> This example shows how to enable TACACS+ enable mode authorization for console and Telnet connections. Authorization is configured with the tacacs+ option. The fallback option is deny. Console> (enable) set authorization enable enable tacacs+ deny both Successfully enabled enable authorization. Console> This example shows how to enable TACACS+ command authorization for both console and Telnet connections. Authorization is configured with the tacacs+ option. The fallback option is deny. Console> (enable) set authorization commands enable config tacacs+ deny both Successfully enabled commands authorization. Console> (enable) This example shows how to verify the configuration: Console> (enable) show authorization Telnet: ------- Primary Fallback exec: tacacs+ deny enable: tacacs+ deny commands: 30-44 Catalyst 4500 Series, Catalyst 2948G, Catalyst 2980G Switches Software Configuration Guide-Release 8.1 78-15486-01