Cisco Cisco Packet Data Interworking Function (PDIF)
System Settings
Configuring TACACS+ for System Administrative Users ▀
ASR 5500 System Administration Guide, StarOS Release 17 ▄
61
Table 3. Mapping of TACACS+ Privilege Levels to CLI Administrative Roles
TACACS+ Privilege Level
CLI Administrative Access Privileges
CLI
FTP
ECSEMS
Lawful Intercept
CLI Role
0
Yes
No
No
No
Inspector
1
Yes
No
Yes
No
Inspector
2
No
Yes
No
No
Inspector
3
Yes
Yes
No
No
Inspector
4
Yes
Yes
Yes
No
Inspector
5
Yes
No
No
No
Operator
6
Yes
No
Yes
No
Operator
7
No
Yes
No
No
Operator
8
Yes
Yes
No
No
Operator
9
Yes
Yes
Yes
No
Operator
10
Yes
No
No
No
Administrator
11
Yes
No
Yes
No
Administrator
12
No
Yes
No
No
Administrator
13
Yes
Yes
No
Yes
Administrator
14
Yes
Yes
Yes
No
Administrator
15
Yes
Yes
Yes
Yes
Administrator
User Account Requirements
TACACS+ users who are allowed administrative access to the system must have the following user account information
defined on the ASR 5x00:
defined on the ASR 5x00:
username
password
administrative role and privileges
Important:
For instructions on defining users and administrative privileges on the system, refer to Configuring
System Administrative Users.