hi-
How about an entry like this in the config file??
user=xyz
{
default service=permit
login = des something
}
The enable should work from this account.Email me if u have
any more problems.And if u get a better solution do tell me also.
-Sam
Christopher Tighe wrote:
>
> Hi,
>
> I know there is often a discussion about Tacacs+ on this
> list, so I thought I would ask the following:
>
> how do you configure a tacacs server to provide authentication
> for a cisco router for enable (privilaged) mode.
> for normal login it is okay and works fine, but in enable
> mode I receive the following error message:
>
> Wed Nov 13 18:39:44 1996 [40201]: enable query for tty2 from
> xxx.xxx.xxx.xxx rejected.
>
> I think I need to define some special user in my tacacs passwd
> file, but I can't find any reference to that so how do I do
> it? Please help, I am getting desperate.....
>
> chris
>
> --
> +------------------------------------------------------------+
> | Christopher Tighe BSc.(Hons) Tel: ++49 (0)7131 6235-119 |
> | Network Services Fax: ++49 (0)7131 6235-115 |
> | tele-daten service GmbH E-Mail: ctighe @
tds .
de |
> | Titotstr. 7-9 |
> | 74072 Heilbronn \"""/ |
> | Germany (o o) |
> +------------------------------------.ooO(_)Ooo.-------------+
--
***************************************************************
Sameer Anja | ("`-/")_.-'"``-.
Systems and Network Administrator | . . `; -._ )-;-,_`)
Internet Securities Inc. Mumbai | (v_,)' _ )`-.\ ``-'
309,Churchgate Chambers, | _.- _..-_/ / ((.'
New Marine Lines,Mumbai-400 020 | ((,.-' ((,/
Phone : 91-22-2674126 |
Fax : 91-22-2624635 |
Email : sameer @
securities .
com |
Internet : http://www.securities.com|
***************************************************************
All Cats look grey in the dark...
You may delegate AUTHORITY, but not RESPONSIBILITY.
***************************************************************
Follow-Ups:
References:
-
Tacacs+
From: Christopher Tighe <ctighe @
dat .
tds .
de>
|
|
