TACACS+ uses privilege levels to separate users into different groups. For the local authorization of users via the "enable" command under telnet/SSH or via privilege levels under WEBconfig, the various administrator rights of LCOS are mapped to the TACACS+ privilege levels:
| TACACS+ level | LCOS administrator rights |
|---|---|
| 0 | No rights |
| 1 | Read only |
| 3 | Read-write |
| 5 | Read-only limited admin |
| 7 | Read-write limited admin |
| 9 | Read-only admin |
| 11 | Read-write admin |
| 15 | Supervisor (root) |