topic Re: Command authorization failed - PIX 506e in Network Access Control https://community.cisco.com/t5/network-access-control/command-authorization-failed-pix-506e/m-p/235596#M434599 <HTML><HEAD></HEAD><BODY><P>Go to Interface Configuration &gt; Advanced TACACS+ Settings.</P><P></P><P>Check Advanced TACACS+ Features in Advanced Configuration Options and click Submit. This will make the Advanced TACACS+ Settings visible under the user configuration.</P><P></P><P></P><P>Under IOS authorization permit all unmatched commands on the ACS and also permit all attributes. Also make sure shell (exec) is enabled and priviledge level is 15 for the user</P></BODY></HTML> Mon, 12 Apr 2004 23:09:12 GMT mohammed.ibrahim 2004-04-12T23:09:12Z Command authorization failed - PIX 506e https://community.cisco.com/t5/network-access-control/command-authorization-failed-pix-506e/m-p/235595#M434597 <P>i used following commands on PIX 506e </P><P></P><P>#username xxxx password xxxx</P><P>#aaa authentication telnet console LOCAL</P><P>#aaa authentication enable console LOCAL</P><P>#aaa authorization command LOCAL</P><P></P><P>now when i reboot after saving to flash memory..i am getting screen wherein I type username and password. When i get into prompt, i am not able to execute any commands. It gives error</P><P></P><P>#Command authorization failed</P><P></P><P>Does anyone know how do I get my PIX back..even password recovery through TFTP is not working.</P><P></P><P></P><P></P> Sun, 10 Mar 2019 14:44:32 GMT https://community.cisco.com/t5/network-access-control/command-authorization-failed-pix-506e/m-p/235595#M434597 admin_2 2019-03-10T14:44:32Z Re: Command authorization failed - PIX 506e https://community.cisco.com/t5/network-access-control/command-authorization-failed-pix-506e/m-p/235596#M434599 <HTML><HEAD></HEAD><BODY><P>Go to Interface Configuration &gt; Advanced TACACS+ Settings.</P><P></P><P>Check Advanced TACACS+ Features in Advanced Configuration Options and click Submit. This will make the Advanced TACACS+ Settings visible under the user configuration.</P><P></P><P></P><P>Under IOS authorization permit all unmatched commands on the ACS and also permit all attributes. Also make sure shell (exec) is enabled and priviledge level is 15 for the user</P></BODY></HTML> Mon, 12 Apr 2004 23:09:12 GMT https://community.cisco.com/t5/network-access-control/command-authorization-failed-pix-506e/m-p/235596#M434599 mohammed.ibrahim 2004-04-12T23:09:12Z