I’m trying to configured a read-only account to have access to certain (non-critical) commands via the api and I’m having no luck.
Aruba ClearPass is doing the TACACS authentication & authorization, admin lvl 15 is working great, the issue is with read-only.
ClearPass read-only is configured with the following attributes
shell cpv-roles network-operator
Switch is configured like this
aaa authentication login default group tacacs+ local
management api http-commands
I’m getting the following error:
“Invalid input (privileged mode required)”
“message”: “CLI command 1 of 1 ‘show ip access-lists’ failed: invalid command”,
I have a strong feeling I’m missing some commands on the switch but not one hundred percent certain.
Any help would be greatly appreciated it.
Post your Answer
You must be logged in to post an answer.