I had recently implemented ACS 18.104.22.168 in my lab , have created user "xyz" with privledge level 15 in shell profile and permit all in command set.
I have used TACACS+ protocol for AA although I am able to login to device with the created user I couldn't able to perform config task and getting error "Permission denied for the role"
MDS switch config-:
tacacs-server host 10.126.73.46
tacacs-server host 10.126.73.46 key cisco
tacacs-server host 10.126.73.46 timeout 25
aaa group server tacacs+ ACS
aaa authentication login default group ACS
aaa authorization commands default group ACS
... View more