mainly the types of devices are cisco routers,switches ,asa and avaya swithes .
And I have already gotten those local users login devices .
currently, for tacacs service , default profile is tacacs deny profile.
and all of those local users have 15 level privilege which we don't want to see. we want to seperate.
I know if we associate with AD, then AD can take this part , we just put the authorization value match with AD..
but for those local users, I am stucking here.