Cisco Systems OL-16066-01 appendix Page-Authorization Tab, page K-90, 138

Authorize EXEC

The authorization method that determines whether a user is allowed to run

Operations Using

an EXEC session:

• None—Authorization is not performed. This is the default.

• AAA Policy Default List—Uses the default authorization method list

that is defined in the device’s AAA policy. See AAA

Page—Authorization Tab, page K-90.

• Custom Method List—Uses the authorization methods specified in the

Prioritized Method List field.

Prioritized Method List

Applies only when Custom Method List is selected as the EXEC method.

Defines a sequential list of methods to be queried when authorizing a user.

Enter the names of one or more AAA server group objects (up to four), or

click Select to display an Object Selectors, page F-593. Use the up and down

arrows in the object selector to define the order in which the selected server

groups should be used.

The device tries initially to authorize users using the first method in the list.

If that method fails to respond, the device tries the next method, and so on,

until a response is received.

If the AAA server group you want is not listed, click the Create button in the

selector to display the AAA Server Group Dialog Box, page F-12. From here

you can define a AAA server group object.

Note If you select None as a method, it must appear as the last method in

the list.

Note RADIUS uses the same server for authentication and authorization.

Therefore, if you use define a RADIUS method list for

authentication, you must define the same method list for

authorization.

User Guide for Cisco Security Manager 3.2

K-138

OL-16066-01