Hello,
I am trying to set up read only access to our nexus equipment using tacacs in ISE.
I am currently following along with this documentation: https://www.cisco.com/c/en/us/td/docs/security/ise/2-2/admin_guide/b_ise_admin_guide_22/b_ise_admin_guide_22_chapter_0111.html
In the tacacs profile here is what i have set up in the raw view with common task type being Nexus
shell:roles="network-operator vdc-operator"
my command sets are:
denying config t*
deny reload
permit show run
I dont think there is anything wrong with my admin policy set.
When I log in and try to run any command I get this error:
Error: AAA authorization failed AAA_AUTHOR_STATUS_METHOD=16(0x10)
any help would be appreciated.
