AAA Authorization

rick.jones · ‎09-10-2002

The problem I have is to get per user authorization working

I have got per user authentication working for HTTP FTP TELNET

but how do I get per user authorization working with ACS 3.0 on PIX 6.22

I am wanting to use TACACS+

The commands below are what I have on the PIX

Authentication is working

aaa authentication include tcp/0 inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 test

aaa authorization include tcp/0 inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 test

On the ACS server I have two users as a test both can Authenticate but what do I need to do to set Authorization say to allow FTP and HTTP to both users but disallow Telnet

Please help

Cheers

Rick

jekrauss · ‎09-15-2002

http://www.cisco.com/warp/public/110/atp52.html#auth_plus