Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
743
Views
0
Helpful
2
Replies

Shell Command(session) Authorization in ACS 4.2

superjini75
Level 1
Level 1

‎04-21-2013 04:07 AM - edited ‎03-10-2019 08:20 PM

Hi, All~

Our customer is using ACS 4.2.

They would like to restriction shell command(session) in ACS 4.2.

For examples,

MSFC => 'session slot [slot #] processor [processor #]' => Command authorization failed.

Is this possible to deny for shell 'session' command?

Have a nice weekend.

Thanks.

Bruce Lee

Labels:
0 Helpful
2 Replies 2

Amjad Abdullah
VIP Alumni
VIP Alumni

‎04-21-2013 11:25 PM

Bruce:
If you are running Cisco IOS then yes it is possible.

AFAIK the MSFC runs on 5600  hardware and that runs IOS so I think it is possible for you

look into this example

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

please rate if useful and let us know if you got any problem with the configuration.

Regards,

Amjad

Rating useful replies is more useful than saying "Thank you"

Rating useful replies is more useful than saying "Thank you"
0 Helpful

Jatin Katyal
Cisco Employee
Cisco Employee

‎04-22-2013 05:27 AM

Could you please duplicate the problem and attach/paste the output of

debug tacacs

debug aaa authorization

Jatin Katyal
- Do rate helpful posts -

~Jatin
0 Helpful
Customers Also Viewed These Support Documents