[c-nsp] Radius Nexus 5k permissions

James Slepicka (c-nsp) cisco-nsp at slepicka.net
Thu Feb 14 15:59:58 EST 2013


>> I think the AV-Pair was something like "shell:role=network admin" or whichever role you want assigned to that user.  
I'm using:

shell:roles=network-admin

I seem to recall shell:role not working (though that may've been w/ MDS gear)

-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net [mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of Eric Girard
Sent: Thursday, February 14, 2013 1:18 PM
To: Scott Voll; cisco-nsp at puck.nether.net
Subject: Re: [c-nsp] Radius Nexus 5k permissions

-----Original Message-----
>I have Radius setup on my Nexus 5k but I don't have permissions to copy run start.  What is needed on the radius server?

>I already have priv level 15.

I don't have access to check on the systems that I did this on recently, but I recall that by default the Nexus does not pay attention to the :shell:priv-lvl" Cisco AV-Pair.  Since the Nexus uses RBAC by default, I think the AV-Pair was something like "shell:role=network admin" or whichever role you want assigned to that user.  Hope that helps,

Eric


_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list