Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
884
Views
0
Helpful
0
Replies

ACS 4.2 - how to setup an ID for Tripwire

aegonkelly
Level 1
Level 1

‎09-09-2010 12:26 PM - edited ‎03-10-2019 05:23 PM

I have been asked to setup an ID for our Tripwire application to access our network devices to check our configuration on a regular basis.  I was told the ID needed "enable" AND ability to do a  'show run'.  I am trying to use ACS 4.2 by creating a group and placing a single user called TRIP in the group.  I have tried assigning the group to any privilege other than 15 but none have enable privilege.  In ACS Group configuration, I have it set to:

Shell Command Authorization Set

   Per Group Command Authorization 

Unmatched Cisco IOS commands = Deny  

x Command = show   

   Arguments = permit run 

Unlisted arguments = Deny

It's like setting up an ID for a new network administrator and restricting their access until they are ready.  Has anyone done this before?

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents