I have used a configuration like the following one. This allows the username
tester to log onto the router with the configured password. They can then
use the "enable 6" command and password to gain access to additional
commands. This configuraiton allows normal users to authenticate via
TACACS+.
aaa new-model
aaa authentication login default local tacacs+
aaa authentication enable default enable tacacs+
aaa accounting exec default start-stop tacacs+
username tester password <password>
enable secret level 6 <password>
privilege exec level 6 traceroute
privilege exec level 6 ping
privilege exec level 6 show startup-config
privilege exec level 6 show running-config
privilege exec level 6 show configuration
privilege exec level 6 show
-----Original Message-----
From: Tejal Shah [mailto:tejal.shah@surat.iqara.net]
Sent: 08 January, 2002 9:05 AM
To: cisco-nsp@puck.nether.net
Subject: [nsp] How to create user
Hi all,
How do i create some user for accesing some specific
command on my router.so that that user can also run some
enable command.
with regards
Tejal
Go To http://www.iqara.net
This archive was generated by hypermail 2b29 : Sun Aug 04 2002 - 04:12:59 EDT