I have previously used Cisco ACS for doing TACACs for my routers and switches. I am now in a new environment which doesn't have Cisco ACS, but they do have a radius server (in the form of IAS on a Windows Domain Controller). I understand that RADIUS has no provision given to users as to which command that they can run on the router. Does this also mean you can't have certain users enable privileges and others have read-only access?