a couple of places where you can look up some of those attributes are in
ACS 4.1 users guide
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/A_TACAtr.html
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/A_RADAtr.html
And some other examples are spread thin across security guides per
technology.
HTH
A.
On 6/14/2012 6:20 AM, Eugene Pefti wrote:
Guys,
Am I missing something? It is a notorious question about role-based
access and CLI views but my point is about finding the required
details in Cisco docs.
I need the right TACACS attributes for cli-view. Assuming that I
forgot the it is "cli-view-name" I navigate to following sections
hoping to find the right syntax:
1.Securing User Services Configuration Guide Library, Cisco IOS
Release 12.4T
2.User Security Configuration Guide, Cisco IOS Release 12.4T
Nothing for TACACS attributes...
Then I decide to take a look at
3.TACACS+ Configuration Guide, Cisco IOS Release 12.4T
And find nothing again. Is it just an oversight from Cisco ?
Same for RADIUS. I go to the section called "RADIUS Attributes
Configuration Guide, Cisco IOS Release 12.4T" and don't find anything
for cli-view.
Earlier last year Kamran posted a message here referring to Cisco
docs. I'm quoting his message:
_As per CISCO DOC CD: _
"When RADIUS authorization is enabled it's necessary to supply parser
view name using Cisco AV-Pair which is *009\001*."
This attribute should contain:
*RADIUS*
shell:cli-view-name=
shell:priv-lvl=15
I'm stupidly accepting that I can't find anything in Cisco docs
anymore. And I wish it is not only for cli-views. There are tons at
RADIUS and TACACS attributes but there's no good systematic reference
in Cisco docs. Just a collection of garbage.
Eugene
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
Are you a CCNP or CCIE and looking for a job? Check out
www.PlatinumPlacement.com
_______________________________________________
For more information regarding industry leading CCIE Lab training, please visit
www.ipexpert.com
Are you a CCNP or CCIE and looking for a job? Check out
www.PlatinumPlacement.com
