Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
16780
Views
6
Helpful
2
Replies

Bypass need for enable password?

devin.noel
Level 1
Level 1

‎05-20-2010 12:33 PM - edited ‎03-06-2019 11:11 AM

How do you let a user acutomatically go to enable mode without the enable password? We are using aaa new-model authentication with local non-tacacs logins. All of the admins have their own username/pass to login, but I'd like to bypass the need to hand out the enable password to everybody. I'm pretty sure I remember being able to grant people with level 15 access direct access to enable commands, but don't remember how.

aaa new-model
aaa authentication login default local enable

username john privilege 15 password 7 ...........

2 people had this problem
Labels:
0 Helpful
2 Replies 2

Edison Ortiz
Hall of Fame
Hall of Fame

‎05-20-2010 12:52 PM

You need authorization, something like this:

aaa authorization exec default local if-authenticated

devin.noel
Level 1
Level 1
In response to Edison Ortiz

‎05-20-2010 02:01 PM

http://www.dslreports.com/faq/9815

Sample #2 worked.

0 Helpful
Customers Also Viewed These Support Documents