Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
921
Views
0
Helpful
1
Replies

Tacacs+ Setup on OpenBSD

tahequivoice
Level 2
Level 2

‎01-13-2006 01:50 PM - edited ‎03-10-2019 02:26 PM

Having some dificulties with creating the configuration file for the Tacacs4.0.4.

I have my test switch authenticating and authorizing, but am not able to figure out how to get the admins group to login directly to the privileged exec mode. Also when I configure

aaa authorization enable group tacacs+ enable

I am not able to authenticate, and have not been able to figure out how to do it for authorization to work. If I create a user = $enable$ with a password, all users get privilege level 15, and I dont want PL 15 at the vty login either.

This is pretty much the only thing I am stumped on, I have authorization and authentication working with the groups and individual users and also seperate command groups, my next step is accounting once I figure out how to create the darned log file in OpenBSD. :)

Here is my admin group

group = admin {

default service = permit

login = cleartext "test"

}

I want to put the exec and shell stuff under this group, and not under individual users.

Labels:
0 Helpful
1 Reply 1

pradeepde
Level 5
Level 5

‎01-19-2006 09:30 AM

If you want to authorize admin group directly to privilege mode, you can provide the following none authentication configuration.

aaa authentication enable default none.This will stop forcing authentication into the privilege mode.

0 Helpful
Customers Also Viewed These Support Documents