[nsp] TACACS Authentication for telnet users

[Tejal Shah]

Hi Oli,

Below is the vty config

line vty 0 4
 access-class 11 in
  login authentication login-auth-list
  authorization exec login-auth-list


But after adding authorization exec login-auth-list
i m not able to login.


Regards
Tejal

-and i changed it to
---- Original Message ----- 
From: "Oliver Boehmer (oboehmer)" <oboehmer at cisco.com>
To: "Tejal Shah Shah" <shahtejal at gmail.com>; "NSP List"
<cisco-nsp at puck.nether.net>
Sent: Monday, July 19, 2004 2:53 PM
Subject: RE: [nsp] TACACS Authentication for telnet users


> [ sorry, now the complete email ]
>
> include the following lines in your users' tacacs profile
>
>         service = exec {
>                 priv-lvl = 15
>         }
>
>
> and enable exec authorization via "aaa authorization exec default group
> tacacs+ if-authenticated" on your devices.
>
> oli
>
>
> Tejal Shah Shah <> wrote on Monday, July 19, 2004 11:12 AM:
>
> > Hello All,
> >
> > As of now i am using TACACS for telnet user authentication ,
> > i m defining uid & pasword in tacacs config file on TACACS server
> > running on linux.
> >
> > After user get authenticate on TACACS server,
> > for login to enable mode i have to communicate enable password to all
> > of them or enable level password on which limited command are allowed.
> >
> > How can u define the priv-level in tacacs config so that user will get
> > enable level access as per defined in tacacs server.So that i dont
> > need to comminicate enable password any more.
> >
> >
> > Regards
> > Shah
> > _______________________________________________
> > cisco-nsp mailing list  cisco-nsp at puck.nether.net
> > https://puck.nether.net/mailman/listinfo/cisco-nsp
> > archive at http://puck.nether.net/pipermail/cisco-nsp/
>
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
>
>