Ansible with Cisco IOS and two steps authentication (Tacacs)

Hi guys

I am totally new to Ansible. Could anyone of you please point me to an example on how to use Ansible with two steps authentication? Our network devices access in controlled by Tacas+ and we have to authenticate to get access and then use “enable x” to get to the access level that we need. This command also requires authentication How is this handled in Ansible?

You can use the following arguments to any of the IOS modules:

authorize: yes
auth_pass: <your enable password.

Would that work when I send “enable 7” instead of “enable” ?
How do I make Ansible use “enable 7” for authoirzation?

Hi Uni

You can use your tacacs to not need “enable 7” as I do not think the module support it.

Meaning when user x enter only standard enable and authorize by tacacs return enable privilage level 7.
See http://www.cisco.com/c/en/us/support/docs/security-vpn/remote-authentication-dial-user-service-radius/13860-PRIV.html

Christer