Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8481
Views
1
Helpful
2
Replies

Selected Shell Profile is DenyAccess

Ibrahim Jamil
Level 6
Level 6

‎05-18-2012 12:19 AM

HI Experts

i have got the below long on the acs 5.2,one the vpn client user connect to asa 5510

Description

Selected Shell Profile is DenyAccess

Resolution Steps

Check whether the Device Administration Authorization Policy rules are correct

4 people had this problem
Labels:
0 Helpful
2 Replies 2

Jatin Katyal
Cisco Employee
Cisco Employee

‎05-21-2012 07:18 AM

The message you have posted says that since the user request is hitting an authorization policy where shell profile is set as deny access. This could be a default shell profile. I would suggest if you can go to access-policies > edit the authorization policy and change the shell profile to permit access.

If you're unsure which authorization policy this user is trying to connect then go to the logs and click on the magnifyng glass that would give you detailed information about the poicy being used.

let me knnow if you need any further help.

Regards,

Jatin

Do rate helpful posts-

~Jatin

Pramod Sreenivasan
Level 1
Level 1
In response to Jatin Katyal

‎04-21-2014 02:24 AM

I followed the above steps but still no luck. i've set the privilege level to 15. But still isnt working.

 

when i click the magnifying glass it says "authentication passed" but still not able to get into the switch via tacacs

0 Helpful
Customers Also Viewed These Support Documents