ACS 4.1- shell command works under user but not group

t.doherty — Mon, 11 Mar 2019 01:15:41 GMT

Hi,

This question might actually belong under tacacs server but it's only happening with the ACE. I've configured tacacs on the 4710 and configured the tacacs server per the documentation. If I enter the shell:<context>*Admin default-domain under the group settings when I login with my tacacs ID my role is set to Network-Monitor. If I set the shell in my specific tacacs ID I'm assigned the correct role as Admin. We're running ACS ver 4.1 and the ACE is A4(1.1)

Thanks

ACS 4.1- shell command works under user but not group

Tarik Admani — Fri, 29 Jul 2011 07:49:04 GMT

For the tacacs settings under the user settings make sure you select the radio button for "Use Group Level Setting" rather than just removing the av-pair.

Thanks,

Tarik

topic ACS 4.1- shell command works under user but not group in Network Access Control

ACS 4.1- shell command works under user but not group

ACS 4.1- shell command works under user but not group