Re: can't execute ping/trace commands on router

From: kevin gannon (kevin@gannons.net)
Date: Wed Oct 19 2005 - 14:50:20 GMT-3

• Next message: kevin gannon: "Re: Frame-Relay Traffic Shaping using "frame-relay class" &"
• Previous message: Hash Aminu: "LAB 9 CCIE Practical Studies VolumeII IP Multicast Chapter."
• Maybe in reply to: Deep Ratan: "can't execute ping/trace commands on router"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Yes it is possible to allow some users more access on a per command
basis than other. The exact way of doing it depends on the TACACS
server.

Regards
Kevin

On 10/19/05, Deep Ratan <deep.ratan@gmail.com> wrote:
> Hi,
> I'm on a router that doesn't let me run ping/trace commands:
>
> Gateway-1#ping
> Authorization - Failed command
>
> Gateway-1#trace
> Authorization - Failed command
>
>
> This is due to company policy. The permissions are probably set on the
> tacacs server. Is there any way to edit/modify permissions on the server
> such that only *some* users can execute ping/trace commands? That is, based
> on user logins?
>
> Anyone familiar with tacacs, please shed some light on this!
>
> thanks, Deep
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
>
> --
> This message has been scanned for viruses and
> dangerous content by MailScanner, and is
> believed to be clean.

• Next message: kevin gannon: "Re: Frame-Relay Traffic Shaping using "frame-relay class" &"
• Previous message: Hash Aminu: "LAB 9 CCIE Practical Studies VolumeII IP Multicast Chapter."
• Maybe in reply to: Deep Ratan: "can't execute ping/trace commands on router"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sun Nov 06 2005 - 22:00:51 GMT-3