10-06-2008 06:10 AM - edited 03-10-2019 04:07 PM
Hi,
To aviod our network engineers enter router config mode by accident, we are looking for a way to let ACS server re-authenticate (popup a username & password prompt)users when they enter "configure terminal" command...
Can you guys help me out ?
Thanks,
Jerry
10-06-2008 07:05 AM
Jerry,
This can be done using command authorization feature where in you can set up what all commands are allowed for any user. Please see this link,
Regards,
~JG
Do rate helpful posts
10-06-2008 07:56 AM
Hi,Jgambhir:
Thanks for your notes.
But my point is that our engineers need full privileges including "config t" on routers to do some modification tasks during a maintenance window.
What I want to do is that when they enter "config t", is there any way on ACS to let routers prompt a username & password to let our engineers re-input their credential before entering router config mode ?
Thanks,
Jerry
10-06-2008 10:41 AM
Jerry,
I don't think there is any way to achieve that.
Any specific reason why you what that way ?
Regards,
~JG
Do rate helpful posts
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide