Hi,
We run Cisco Secure ACS on win 2000. We have recently given restricted access to our IT division to change port speeds and duplex on IOS and CatOS switches. We have restricted the commands they can enter using the Shell Command Authorization Sets. Our worry is that someone may accidentally change the speed or duplex of trunk port and we will lose connection to the switch. Is there any way we can lock down trunk ports using Tacacs or switch config to prevent this from happening.