Cisco Systems 3.3 Manual De Usuario
Appendix F RDBMS Synchronization Import Definitions
Action Codes
F-24
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
176
ADD_IOS_
COMMAND_ARG
COMMAND_ARG
UN|GN,
VN, V1, V2
VN, V1, V2
Specifies a set of command-line arguments that are
either permitted or denied for the Cisco IOS
command contained in VN. The command must have
already been added via Action 174:
either permitted or denied for the Cisco IOS
command contained in VN. The command must have
already been added via Action 174:
GN = "Group 1"
VN = "telnet"
V1 = "permit"
V2 = "10.1.1.2"
or
UN = "fred"
VN = "show"
V1 = "deny"
V2 = "run"
The first example will allow the telnet command with
argument 10.1.1.2 to be used by any user in Group 1.
argument 10.1.1.2 to be used by any user in Group 1.
The second example ensures that user fred cannot
issue the Cisco IOS command show run.
issue the Cisco IOS command show run.
177
REMOVE_IOS_
COMMAND_ARG
COMMAND_ARG
UN|GN,
VN, V2
VN, V2
Removes the permit or deny entry for the given
Cisco IOS command argument:
Cisco IOS command argument:
GN = "Group 1"
VN = "telnet"
V2 = "10.1.1.1"
or
UN = "fred"
VN = "show"
V2 = "run"
Table F-5
Action Codes for Modifying TACACS+ and RADIUS Group and User Settings (continued)
Action
Code
Code
Name
Required
Description