40-13
Cisco Security Appliance Command Line Configuration Guide
OL-10088-01
Chapter 40 Managing System Access
Configuring AAA for System Administrators
Figure 40-3 Disallowing Arguments
•
When you abbreviate a command at the command line, the security appliance expands the prefix and
main command to the full text, but it sends additional arguments to the TACACS+ server as you
enter them.
For example, if you enter sh log, then the security appliance sends the entire command to the
TACACS+ server, show logging. However, if you enter sh log mess, then the security appliance
sends show logging mess to the TACACS+ server, and not the expanded command show logging
message. You can configure multiple spellings of the same argument to anticipate abbreviations
(see Figure 40-4).
Figure 40-4 Specifying Abbreviations
•
We recommend that you allow the following basic commands for all users:
–
show checksum
–
show curpriv
–
enable
–
help
–
show history
–
login
–
logout
–
pager
To Next Page
Loading...
