summaryrefslogtreecommitdiff
blob: 406fff33b8004af8ef081af71fabd8c852961165 (plain)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
# You must configure tac_plus before use.  At a minimum, you need a server
# key and a user block, such as below.
#
# Please see tac_plus.conf(5) for more information.

#key = kEy4U

#user = youruser {
#  login = des ndkKAzNoc37VA
#  enable = des ndkKAzNoc37VA
#}

#user = youruser {
#	default service = permit
#	login = PAM
#	member = yourgroup
#}

# Cisco admins
#group = ciscoadmins {
#	default service = permit
#	service = exec {
#	priv-lvl = 15
#	}
#}


# Cisco admins using an acl to allow specific devices
#group = ciscoadmins {
#	default service = permit
#	acl = ciscodevices
#	service = exec {
#		priv-lvl = 15
#	}
#}

# Allows devices with specified IP address to talk to this TACACS+ server
#acl = ciscodevices {
#	permit = 1.2.3.4$
#	deny = .*
#}