[c-nsp] Radius Nexus 5k permissions
James Slepicka (c-nsp)
cisco-nsp at slepicka.net
Thu Feb 14 15:59:58 EST 2013
>> I think the AV-Pair was something like "shell:role=network admin" or whichever role you want assigned to that user.
I'm using:
shell:roles=network-admin
I seem to recall shell:role not working (though that may've been w/ MDS gear)
-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Eric Girard
Sent: Thursday, February 14, 2013 1:18 PM
To: Scott Voll; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Radius Nexus 5k permissions
-----Original Message-----
>I have Radius setup on my Nexus 5k but I don't have permissions to copy run start. What is needed on the radius server?
>I already have priv level 15.
I don't have access to check on the systems that I did this on recently, but I recall that by default the Nexus does not pay attention to the :shell:priv-lvl" Cisco AV-Pair. Since the Nexus uses RBAC by default, I think the AV-Pair was something like "shell:role=network admin" or whichever role you want assigned to that user. Hope that helps,
Eric
_______________________________________________
cisco-nsp mailing list cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/
More information about the cisco-nsp
mailing list