A customer wants to authenticate AOS-Switch managers to a RADIUS server. The CIO wants to assign different rights to different management users for granular control over their rights and privileges. What must the network administrator enable on the AOS-Switches to ensure they comply with this plan?
In order to assign different rights to different management users for granular control over their rights and privileges, the network administrator must enable RADIUS-based command authorization on the AOS-Switches. This feature allows for precise control over what commands each user can execute, ensuring that only authorized users have the permissions necessary to perform specific tasks.
i think A is correct RADIUS-based command authorization
You can use command authorization to assign different rights to different management users at a granular level - A
Switch(config)# aaa authentication login privilege-mode Enabling this mode also allows you to divide your management users into operators and managers.
C. it is more granullar. Radius is only for operator or manager. Login-privileges allow to define manager levels ( total control, only few actions...etc)