The info is out there.. do a google search on TACACS CONFIGURATION. I have pasted a simple script here for you to start with. Feel free to drop by my web site for other info and downloads for TACACS+. www.packetattack.com
MikeS ----- ios config ------ hostname Router ! aaa new-model aaa authentication password-prompt promptPW aaa authentication username-prompt usernameID aaa authentication login default tacacs+ enable enable password cisco ! tacacs-server host xxx.xxx.xxx tacacs-server key keygoeshere ! ------sample config for tac_plus.cfg ----------- (original sample found at http://www.cdcentre.demon.co.uk/network/index.htm) /etc/tacacs/tac_plus.cfg key = keygoeshere # Use /etc/shadow file to do authentication default authentication = file /etc/shadow # Where is the accounting records to go accounting file = /var/log/tac_acc.log #All services are alowed.. user = default { default service = permit } user = testuser { default service = permit login = file /etc/shadow } user = script { login = cleartext passwd cmd = show { permit "ip bgp summary" permit "version" permit "running-config" permit "processes cpu" permit "ip ospf neighbor" permit "interface*" permit "ip interface*" } cmd = terminal { permit length } } Ken Diliberto wrote: > > Would anyone happen to have a TACACS config file for the free > TACACS server from Cisco? I'm trying to figure out how to > configure it to allow a user to login with a priv_lvl of 15. > > I guess I'll also need IOS configurations, won't I. > > One of these days I'll be able to get what I want from CCO... > > Thanks. > > Ken > > Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=26849&t=26811 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
