Shen
asked on
cisco routers users setup privileges through a radius server
We have some users that will require additional privileges on cisco routers, like executing commands such as no shut on an interface, etc. Is it possible to set specific privileges levels on a radius server and apply to users.
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
nps
ASKER
then on the cisco device do :
aaa authentication login "test" group radius local
setup the privilege in the router :
Like example: privilege exec level 1 show ip
username group "test" privilege 1
I am trying to avoid setting users and passwords in the router. Use radius to provide the users and authentication and assign the privilege exec level to a radius group "test"