From: Spoerr, Mathias (Mathias.Spoerr@xxxxxxxxxxxxx)
Date: Sun Feb 17 2002 - 12:30:16 GMT-3
You only can see the things with "show running" you are allowed to
configure.
The only way to see the whole configuration is with "sh start" or with
command authorization with ACS.
Mathias
-----Urspr|ngliche Nachricht-----
Von: Lupi, Guy [mailto:Guy.Lupi@eurekaggn.com]
Gesendet: Samstag, 16. Februar 2002 19:01
An: 'kenairs'; Robert L. DuBell; ccielab@groupstudy.com
Betreff: RE: username and privilege
username blah privilege 10 password 0 blah
privilege exec level 10 show configuration
That will automatically put the user into privilege level 10 when they log
in, and they can do a show config in addition to the other level 10
commands. For some reason show running-config doesn't work, if you enter
"privilege exec level 10 show running-config", when you telnet in it let's
you do a show run but it just shows you this:
r2#sh run
Building configuration...
Current configuration : 133 bytes
!
! Last configuration change at 05:21:12 UTC Mon Mar 1 1993
! NVRAM config last updated at 05:15:36 UTC Mon Mar 1 1993
!
!
!
!
end
r2#
~-----Original Message-----
~From: kenairs [mailto:kenairs@hotmail.com]
~Sent: Saturday, February 16, 2002 12:26 PM
~To: Robert L. DuBell; ccielab@groupstudy.com
~Subject: Re: username and privilege
~
~
~Tks.
~But based on your command, the user would need to type >enable
~10 at the
~command prompt to go into privilege level 10.
~Can i try something like based on the username the router will
~automatically
~go into the specific level ( based on username )
~
~----- Original Message -----
~From: Robert L. DuBell <bobdu11@cox.net>
~To: kenairs <kenairs@hotmail.com>; <ccielab@groupstudy.com>
~Sent: Saturday, February 16, 2002 3:14 PM
~Subject: Re: username and privilege
~
~
~> You would assign user A a specific password and let him only
~know that
~> specific password, then you would enter the following on the
~router you
~> wanted him to have show config capabilities on
~>
~> enable password level 10 pswd10
~> privilege exec level 10 show running config
~>
~> The normal password would remain in effect for the remainder of the
~network
~> engineers and they would have full access....Bobdu1
~>
~> ----- Original Message -----
~> From: "kenairs" <kenairs@hotmail.com>
~> To: <ccielab@groupstudy.com>
~> Sent: Saturday, February 16, 2002 5:31 AM
~> Subject: username and privilege
~>
~>
~> > Hi ,
~> > How can i assign a privilege level to specific user.
~> > I only want user 'A' to do a show config and not other commands.
~> >
~> >
~> > username a privilege 5 password cisco
~> > username cisco password cisco
~> >
~> > when i telnet to the router using username a , and then i
~do a show
~> privilege
~> > . It give me a privilege level of 15. ( i think i should see a 5 )
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 13:46:25 GMT-3