Solved

cisco routers users setup privileges through a radius server

Posted on 2015-02-19
4
77 Views
Last Modified: 2015-07-31
We have some users that will require additional privileges on cisco routers, like executing commands  such as no shut on an interface, etc. Is it possible to set specific privileges levels on a radius server and apply to users.
0
Comment
Question by:Shen
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
  • 2
4 Comments
 
LVL 4

Assisted Solution

by:askincakir
askincakir earned 500 total points
ID: 40620697
Hi,

Mostly solution for your request is done by Cisco Tacacs+ server. There you can use command level permit actions.
But, here i am giving you some another cli level privilege enablements.
Just check and let me know is this what you need ?
Module-Bonus-7-user-priviledges.pptx
0
 

Author Comment

by:Shen
ID: 40625727
Is there a way to setup a radius group named say:  "test" that belongs to example: domain users

then on the cisco device do :
aaa authentication login "test" group radius local

setup the privilege in the router :
Like example:   privilege exec level 1 show ip  
                            username group  "test" privilege 1
I am trying to avoid setting  users and passwords  in the router. Use radius to provide the users and authentication and assign the privilege exec level to a radius group "test"
0
 
LVL 4

Accepted Solution

by:
askincakir earned 500 total points
ID: 40628178
Hi,

Which radius you are planning to use ?

Microsoft NPS ?

Cisco ACS ?
br,
0
 

Author Comment

by:Shen
ID: 40649436
nps
0

Featured Post

Simple, centralized multimedia control

Watch and learn to see how ATEN provided an easy and effective way for three jointly-owned pubs to control the 60 televisions located across their three venues utilizing the ATEN Control System, Modular Matrix Switch and HDBaseT extenders.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Is your computer hacked? learn how to detect and delete malware in your PC
In this video we outline the Physical Segments view of NetCrunch network monitor. By following this brief how-to video, you will be able to learn how NetCrunch visualizes your network, how granular is the information collected, as well as where to f…
In this brief tutorial Pawel from AdRem Software explains how you can quickly find out which services are running on your network, or what are the IP addresses of servers responsible for each service. Software used is freeware NetCrunch Tools (https…

627 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question