000018572 - Getting TACACS enabled not authorized in ace/server logs

Document created by RSA Customer Support Employee on Jun 16, 2016Last modified by RSA Customer Support Employee on Apr 21, 2017
Version 2Show Document
  • View in full screen mode

Article Content

Article Number000018572
Applies ToRSA ACE/Server
Cisco routers
IssueGetting TACACS enabled not authorized in ace/server logs
Users are securid-challenged while entering enable mode in Cisco IOS
CauseUser is not an administer in the ACE/Server database
ResolutionThe user must be an ACE/Server administrator for the enable challenge to work. Making a user an administrator will by default allows the user to administer the ace server database, but is not required. If the user should not have administrator rights, try the following procedure:

NOTE: This is only available through remote administration or on an NT server

1. Start -> Programs -> ACE Server -> Database Administration - host or remote Mode (log in)

2. User -> Edit User -> Select the user then Administrative Role (Near bottom right hand side of edit user screen) and check Administrator to make the user an Administrator.

To prevent the user from having administrator rights to the database, click the New Task list. Type the name of your task list in the box available (upper right corner); this task list will have no rights, so name it appropriately. Check OK to save. Any other users that need to be administrator but will not be performing any administrative tasks can also use this empty task list.
Legacy Article IDa1812