I am doing an eval of 5.2, we currently have 4.2 running in our network.
I followed the user guide to set up a shell profile for priviledged exec mode. Set both the default and miximum priviledge to static 15. When I login to a network device, get the switch> user exec mode prompt. TACACS Authentication report shows this login as passed. When I attempt to enable with the same password I get Error in Authentication. The AAA Authentication report then shows "13029 Requested priviledge levl too high".
I am still using the same AAA Authentication configuration as was present on the switch and works for 4.2. When I telnet to this switch and it is pointed at the 4.2 ACS I am immediately dropped in priviledged exec mode.
Any ideas?
aaa authentication login default group ACS local enable
aaa authentication enable default group ACS enable
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 1 default group ACS local
aaa authorization commands 15 default group ACS local