I'm Trying to use EEM to add a description to the port of the returned username from the authentication session.
the example below is for a single port which will change to a regex when succesful, however despite working when running through the commands manually it doesn't seem to automatically put the description in despite seeing the authe session successful
event manager applet add_port_descr event identity interface GigabitEthernet3/0/47 authc all authz-complete action 1.0 cli command "enable" action 2.0 cli command "config t" action 3.0 cli command "interface $_nd_local_intf_name" action 4.0 cli command "do show auth sess int $_nd_local_intf_name detail | include User-Name" action 5.0 cli command "description $_cli_result" ! end
@qdrawmcgraw2003 is the switch configured for TACACS authentication/authorisation? In the past I've had to configure "authorization bypass" e.g. "event manager applet NAME authorization bypass" to ensure the commands are not sent to the TACACS server, where ultimately the commands failed because no credentials where provided.