Where To Go Next; Additional References For Tacacs - Cisco Nexus 9000 Series Configuration Manual

Where to Go Next

license. Certain components of this software are licensed under
the GNU General Public License (GPL) version 2.0 or the GNU
Lesser General Public License (LGPL) Version 2.1. A copy of each
such license is available at
http://www.opensource.org/licenses/gpl-2.0.php and
http://www.opensource.org/licenses/lgpl-2.1.php
switch-enable#
The following example shows how to permit all users with roles priv-5 and above to execute the pwd command:
switch# configure terminal
switch(config)# role name priv-5
switch(config-role)# rule 1 permit command pwd
The following example shows how to deny the show running-config command to all users with roles below
priv-5. First, you must remove the permission to execute this command from the priv-0 role; then you must
permit the command at role priv-5 so that users with roles priv-5 and above have permission to run the
command.
switch# configure terminal
switch(config)# role name priv-0
switch(config-role)# rule 2 deny command show running-config
switch(config-role)# exit
switch(config)# role name priv-5
switch(config-role)# rule 3 permit command show running-config
switch(config-role)# exit
Where to Go Next
You can now configure AAA authentication methods to include the server groups.

Additional References for TACACS+

This section includes additional information related to implementing TACACS+.
Related Documents
Related Topic
Cisco NX-OS licensing
VRF configuration
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
102
Document Title
Cisco NX-OS Licensing Guide
Cisco NX-OS 9000 Series NX-OS Unicast Routing Configuration Guide
Configuring TACACS+