08-07-2013 02:43 PM
I am unable to enter config mode on an active ACE module.
Also, I don't even have the option for any 'sh ft' commands.
It might be an authorization issue with ACS but it doesn't give a 'command authorization fail' message when trying the command.
ACE1/Admin# ?
Exec commands:
changeto Changeto another context
configure Enter configuration mode
dir Directory listing for files
exit Exit from the EXEC
ping Send echo messages
show Show running system information
ssh SSH to another system
terminal Set terminal line parameters
traceroute Trace route to destination
xml-show Display xmlized show command result in xml
ACE1/Admin# configure
^
% invalid command detected at '^' marker.
Does this look like an authorization issue?
Thanks.
08-09-2013 06:17 AM
That is the error message you would see if the ACS was not setting the user role to Admin. See discussions at
https://supportforums.cisco.com/thread/2041390
https://supportforums.cisco.com/thread/2038886
for examples of what you need to configure.
HTH
Cathy
08-09-2013 03:09 PM
Hi Bobby,
The problem is the Role of the user you are using, is probably a network-monitor role. You can check with show users to confirm this.
You probably need to setup the shell attribute in the ACS
---------------------
Cesar R
ANS Team
08-15-2013 07:39 PM
Bob,
If you did not specify a role for your user and password, ACE will take the default which is Network-monitor
Jorge
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide