
The `aaa authorization exec default` command in Cisco IOS is used to define the authorization method for user EXEC sessions for [AAA](/aaa). The available options for this command include:

- `cache`: Uses cached-group.
- `group`: Uses a server-group.
- `if-authenticated`: Succeeds if the user has authenticated.
- `krb5-instance`: Uses Kerberos instance privilege maps.
- `local`: Uses the local database.
- `none`: No authorization (always succeeds).

In some IOS versions, the `group radius` keywords can be used to specify that the list of all [RADIUS](/aaa-radius-vs-tacacs) servers defined by the `aaa group server radius` command should be used for authorization. If the `group` keyword is not used, a single configured RADIUS server will be used instead.

To ensure compatibility, verify that your IOS version supports the specific syntax of the `aaa authorization exec default` command you intend to use.

## Links

https://forum.networklessons.com/t/aaa-configuration-on-cisco-switch/1154/58?u=lagapidis

https://networklessons.com/cisco/ccie-enterprise-infrastructure/aaa-configuration-cisco-switch/

aaa authorization exec Command in Cisco IOS

VXLAN access trunk port

VXLAN

Value of Cisco certifications

Very-high-bit-rate  Digital Subscriber Line (VDSL)

Virtual Private LAN Service (VPLS)

Virtual Private Wire Service (VPWS)

Virtual Router Redundancy Protocol (VRRP)

Virtual Template Configuration

Virtualization functions - definition of terms

VoIP - Anatomy of a voice communication

VoIP - Voice VLAN

VoIP IP phone registration issues

WAN - edge equipment names and terminology

WAN - how to choose a WAN technology

WAN - what is BVDSL

Wake on LAN

Why do we trust a website certificate

Wide Area Network

Wireless - Aggressive Client Load Balancing

Wireless - CAPWAP tunnel

Wireless - CSMA-CA

Wireless - FlexConnect Mode

Wireless - Light Weight Access Point Protocol (LWAPP)

Wireless - Lightweight Access Point

Wireless - Meraki Management Mode

Wireless - Orthogonal Frequency Division Multiple Access (OFDMA)

Wireless - Real-time and management functions

Wireless - Using GCMP with WPA2 and WPA3

Wireless - WLC authbypass feature

Wireless - WLC trunk connection to core

Wireless - WPA3

Wireless - Wi-Fi 2.4GHz frequency band and channels

Wireless - Wi-Fi 5 GHz frequency bands and channels

Wireless - Wi-Fi 6

Wireless - Wi-Fi 6E (Extended)

Wireless - Wi-Fi IEEE 802.11

Wireless - Wi-Fi Protected Access (WPA)

Wireless - Wired Equivalent Privacy (WEP)

Wireless - Wireless LAN Controller

Wireless - configure a 1941W router with a single subnet on wired and wireless interfaces

Wireless - repeater vs mesh

Wireless - troubleshooting wireless clients on a WLC

Wireless - virtual WLC limitations

Wireless AP FlexConnect mode switchport mode

Wireless Fast BSS Transition

Wireless Service Sets

Wireless roaming defined

Wireshark

YANG

cisco ios cli show command double pipe

cisco ios delete folder on flash

debug order of operation

docker iptables

getting a network job without experience

how to study amazon aws

mGRE

networking job interviews

no ip mroute-cache deprecated command

openssl default folder and files

openssl second ca

radtest command to test radius server

regular expressions testing

traffic generator options

xDSL - what is it and what types are there