Networking Forum powered by InfoSec Insitute

Sorry I wasn't know where actually to be post :*|

I'm trying to set up RANCID.

Status
1. TACACS with certain privileges
2. Has Enable password
3, Login with TACACS it ending with "#"

Those router with TACACS I'm unable to access to enable mode with RANCID.

So, I try to set the add autoenable x.x.x.x {0} [default is 0= =||], force the RANCID to run enable but it's failed.
http://www.shrubbery.net/rancid/man/cloginrc.5.html

Please provide some hints

p/s Unable to create extra TACACS with the all privileges

I'm familiar with RANCID, but I am unable to understand your question.

Autoenable tells rancid if it needs to enable or not; some devices will drop you right into enable mode, so there is no need to do an 'enable' command first.

Sorry confusing you and other :*

I have test in two different router
My router it wont automatic drop direct to enable mode.
So I need to enable mode manually for both router A and B.

Router A which without TACACS(password only)
Success to enable mode and backup the configuration

Router B with TACACS(username and password)
It wont auto enable mode and can't perform back up the configuration.

Please provide some hints

It's Luck LOL

when login to my customer router it will automatic prompt me hostname# not hostname>;
so the whole script will stop,
unless I set autoenable <router> {1}
the script will continue, since my tacacs with no privilege for show run, it useless.

So I change the script at clogin
set prompt ">" to set prompt "#"
it will execute the enable script when clogin verify the "#" but no more for ">" LOL

Although it Had solved my problem but cause another problem to me LOL.

Or anyone had any other better solution mind to share with me?

p/s I didn't study the whole script and just luck success solve it

Are you sure?

actually I don't allowed to do so.

the router configuration wasn't "belong" to customer and it's maintain by and own by ISP.

[Perlhack]

Code: Select all

Router B with TACACS(username and password)
It wont auto enable mode and can't perform back up the configuration.


There is a tacacs attribute "priv-lvl". Create a group with priv-lvl set to 15, assign the user to the member of the group and it will dump you into enable mode.

Code: Select all

Router B with TACACS(username and password)
It wont auto enable mode and can't perform back up the configuration.


There is a tacacs attribute "priv-lvl". Create a group with priv-lvl set to 15, assign the user to the member of the group and it will dump you into enable mode.

Thanks for the reply, I wasn't allow to create the group LOL but is fine; I found my problem.

Sharing the actual problem I face
herewith the details.
http://www.shrubbery.net/pipermail/ranc ... 04521.html

I do a simple modify at clogin but not advise

at clogin line 752
set prompt ">" change to set prompt "#"


but for those who login to the router is prompt ">" the clogin presume it was enable mode. (after the change above)

It had solve my problem but not sure will it cause other error or bug,

Thanks Dinger providing the link to me

I have the same situacion , but I dont find this code to modify and solve it, any have a other solution for this problem?