Reference Guide
TACACS+ Access Manager
Basic Configurations for TACACS+ Devices
add a new element type if the properties of the existing element types do not match the properties of the new devices (see section docid\ um 8imb0 vfmney6utxy3 for details on how to add an element type) add a new device group if the realms or properties of the existing device groups do not match the new devices (see the section docid\ oktvniavwyugj2j tv2tp for details on how to add a new device group) add the radius/tacacs+ secret as radius/tacacs+ key to the device group add the common enable password enable password property to the device group, if your device prompts you for an enabled password to run some scripts add the device using the new device discovery feature on the inventory screen you can use sshv2 as the protocol select the element type and the device groups you just created (see section docid\ gcu7nihpjfnewsl63l8bk for details on how to add a device using new device discovery ) add a device group realm between the device group and the user groups that will have access (see section docid\ xok97nwvt0ariu2 hglke for details on how to add a device group realm) add radius and tacacs+ attributes as policy keys (described below) add command level white and black keys as policy keys (see section docid\ m maghm2thamdfliepgwf for details on how to define policy keys for white key/black key commands or radius and tacacs+ attributes) create policy groups for the white key, black key, radius, and tacacs+ attribute policy keys (see section docid\ tvsmd7hi6ujvnukakfnkz for details on how to create policy groups) create policy realms between the newly created policy groups and device group realms (see section docid 1hp6ejkf1kwab3gj6mvz6 for details on how to create policy realms)