cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
255
Views
0
Helpful
0
Replies
Cisco Employee

Permission denied for the role in Cisco MDS switch post Configuring TACACS+

Hi All,

 

I had recently implemented ACS 5.8.1.4 in my lab , have created user "xyz" with privledge level 15 in shell profile and permit all in command set.

 

I have used TACACS+ protocol for AA although I am able to login to device with the created user I couldn't able to perform config task and getting error "Permission denied for the role"

 

MDS switch config-:

 

tacacs+ enable

tacacs-server host 10.126.73.46

tacacs-server host 10.126.73.46 key cisco

tacacs-server host 10.126.73.46 timeout 25

 

 

aaa group server tacacs+ ACS

server 10.126.73.46

 

aaa authentication login default group ACS

aaa authorization commands default group ACS