aaa authorization default

Use this command to enable per-command authorization. By enabling this user should be able to authorize every command executed via configured server.

This authorization will work only when authentication is successful.

Use the no form of this command to disable authorization.

Command Syntax

Copy 
aaa authorization default (vrf (NAME|management)|) ((group LINE)|local) 
no aaa authorization default (vrf (NAME|management)|) ((group LINE)|local) 

Parameters

group

Server group list for authentication

LINE

Space-separated list of up to 8 configured TACACSClosed Terminal Access Controller Access Control System+ server group names

local

Use local authentication

vrf management

Defines the management VRFClosed Virtual Routing and Forwarding instance.

vrf NAME

Specify the user-defined VRF instance name.

Default

Default AAA method is local

Default groups: TACACS+

Command Mode

Configure mode

Applicability

This command is introduced in OcNOS version 6.1.0. Added VRF NAME parameter in OcNOS version 6.5.3.

Examples

Copy 
#configure terminal
(config)#aaa authorization default vrf management group tacacs+