AAA Question

From: Lab Rat #109385382 (techlist01@gmail.com)
Date: Mon Nov 06 2006 - 04:53:17 ART

• Next message: shank shank: "redistribution question IE lab1v1-task3.7"
• Previous message: haducbinh: "RSTP convergence"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

I have two users "u1" and "u2", each configured locally on the router with
privilege levels 7 and 15, respectively. TACACS+ is configured for
accounting. Authorization is done locally.

The requirement is to "authorize and account for these two privilege
levels."

My question is, for the "commands" portions of each privilege level, do I
need to have the following statements configured globally in addition to the
"command 7" and "command 15" statements?

aaa authorization commands 0 LAUTHOR local
aaa authorization commands 1 LAUTHOR local

aaa accounting commands 0 LAUTHOR local
aaa accounting commands 1 LAUTHOR local

If so, why? If not, why not? :)

Thanks,

Ed

• Next message: shank shank: "redistribution question IE lab1v1-task3.7"
• Previous message: haducbinh: "RSTP convergence"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Fri Dec 01 2006 - 08:05:45 ART