HI Colin,
Generic tacacs authorization setup with privilage level 15 access and restricted access with permitting few commands is already set up and it is working correctly. Sorry if i did not convey my question.
My requirement is very specific allowing changes on a gigethernet ports and not allowing changes on tengigethernet ports for a user.
I am trying to do this with command arguments , but it either permits both or denys both. i feel it is not processing further once the first command argument matches.