I have implemented role based access for management users via TACACS on our cluster but find that read only users cannot execute 'mdconnect' or 'logon' commands and therefore cannot look at configuration easily on MC's. Apart from giving all users the standard role, is there another way around this?
https://www.arubanetworks.com/techdocs/ArubaOS_86_Web_Help/Content/arubaos-solutions/behavior-defaults/defa-mana-user-role.htm
Try "standard" role.
EDIT: It seems like no role is allowing you to do MDC, unfortunately.
Standard works fine but I don't want to give read only users write access.
The read only users can log in directly to MC's and run show commands but it would be easier via the MM so there is a single login.
Yes, that would be convenient, but those roles do not allow MDC, unfortunately.
© Copyright 2024 Hewlett Packard Enterprise Development LPAll Rights Reserved.