Filter
Top Products
Chapter 7 Setting Up and Managing User Accounts
Advanced User Authentication Settings
7-26
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
Step 5 To employ custom attributes for a particular service, select the Custom attributes
check box under that service, and then specify the attribute/value in the box below
the check box.
Step 6 Do one of the following:
a. If you are finished configuring the user account options, click Submit to
record the options.
b. To continue to specify the user account options, perform other procedures in
this chapter, as applicable.
Configuring a Shell Command Authorization Set for a User
Use this procedure to specify the shell command authorization set parameters for
a user. You can choose one of five basic options:
• None—No authorization for shell commands
• Group—For this user, the group-level shell command authorization set
applies
• Assign a Shell Command Authorization Set for any network device—One
shell command authorization set is assigned, and it applies all network
devices
• Assign a Shell Command Authorization Set on a per Network Device
Group Basis—Particular shell command authorization sets are to be effective
on particular NDGs
• Per User Command Authorization—Enables you to permit or deny specific
Cisco IOS commands and arguments at the user level
Before You Begin
• Ensure that a AAA client has been configured to use TACACS+ as the
security control protocol.
• In the Advanced Options section of Interface Configuration, ensure that the
Per-user TACACS+/RADIUS Attributes check box is selected.