Hi all I am not getting the exact picture of how the shell authentication and authorization works for ASA. In the case of IOS, depending on the privilege, you are put into the exec or privilege exec mode. If I get priv 15 from the TACACS server, then I go into the privilege exec mode (#) directly.
With ASA, I am never put the privilege exec mode (#) even, if I have priv 15 in case of both LOCAL and TACACS authentication. I am put into the exec mode and then I need to enter "enable" command. The following command of ASA doesn't seem to work as it works in IOS. aaa authorization exec If someone has mastered the ASA's shell authentication/authorization, please give an explanation of how does it work in ASA? With regards Kings
_______________________________________________ For more information regarding industry leading CCIE Lab training, please visit www.ipexpert.com
