Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
595
Views
0
Helpful
3
Replies

How to Allow All arguments for a specific command in ACS 5.8

Ali Muazzam
Level 1
Level 1

‎01-24-2017 01:11 AM - edited ‎03-11-2019 12:23 AM

Hi,

I am configuring command sets in ACS 5.8. 

I need to know how to allow all arguments for a specific command

e.g i want a user to configure a vlan on IOS device and its subsequent configuration options.

What i can see is i have to allow command vlan and then all arguments one by one

Early reply would be helpful

Cheers

Labels:
0 Helpful
3 Replies 3

Gagandeep Singh
Cisco Employee
Cisco Employee

‎01-25-2017 11:17 AM

Hi Ali,

If you can just configure vlan in command field keeping argument empty and see if it works for all vlan commands. Make sure you have command authorization for config-commands configured.

Regards

Gagan

PS : rate if it helps!!!

0 Helpful

Ali Muazzam
Level 1
Level 1
In response to Gagandeep Singh

‎01-25-2017 09:47 PM

Hi Gagan,

its not working with blank argument. 

Switch(config)#vlan 2002
Switch(config-vlan)#nam
Switch(config-vlan)#name TEST
Command authorization failed.

Switch(config-vlan)#

Vlan get created but cant go under vlan.

config-commands are already allowed thats why able to configure vlan.

any other option?

0 Helpful

Gagandeep Singh
Cisco Employee
Cisco Employee
In response to Ali Muazzam

‎01-27-2017 06:50 PM

If you can send me the report of tacacs authorization report where you will find command for failed authorization.

We need to put the exact command in the command set.

Regards

Gagan

0 Helpful
Customers Also Viewed These Support Documents