LTM TACACS Authorization

e.g.

root@(ve11a)(cfg-sync Changes Pending)(Standby)(/Common)(tmos) show sys version

Sys::Version
Main Package
  Product  BIG-IP
  Version  11.3.0
  Build    2806.0
  Edition  Final
  Date     Tue Nov 13 22:34:00 PST 2012

root@(ve11a)(cfg-sync Changes Pending)(Standby)(/Common)(tmos) modify auth remote-role role-info add { admin { attribute "F5-LTM-User-Info-1=adm" role 0 user-partition all console tmsh deny disabled line-order 1 }}

root@(ve11a)(cfg-sync Changes Pending)(Standby)(/Common)(tmos) list auth remote-role
auth remote-role {
    role-info {
        admin {
            attribute F5-LTM-User-Info-1=adm
            console tmsh
            line-order 1
            role 0
            user-partition all
        }
    }
}

thanks

Hi,

is it also possible to have the extended-shell in attribut instead of the tmsh?For me it seems extended-shell is not available in v11.x for users doing external authentication, am I right?

root@(ve11a)(cfg-sync Changes Pending)(Standby)(/Common)(tmos) list auth remote-role
auth remote-role {
    role-info {
        admin {
            attribute F5-LTM-User-Info-1=adm
            console tmsh
            line-order 1
            role 0
            user-partition all
        }
    }
}

Or does is it somehow possible via the vendor specific attrubute: F5-LTM-User-Console (from v10).

Thank you very much

Regards

Lukas

is this acceptable?

 

 

sol10272: Accessing the bash shell as a remotely authenticated user

 

http://support.f5.com/kb/en-us/solutions/public/10000/200/sol10272.html

is this acceptable?

 

 

sol10272: Accessing the bash shell as a remotely authenticated user

 

http://support.f5.com/kb/en-us/solutions/public/10000/200/sol10272.html