Priviledge levels commands

From: Paul (p_chopin@xxxxxxxxx)
Date: Fri Jul 12 2002 - 14:57:03 GMT-3

• Next message: John White: "RE: dialer laod-threshold"
• Previous message: kpalmer: "ccie web page/self doc"
• Next in thread: Danny.Wang@xxxxxxxxxxxxxx: "Re: Priviledge levels commands"
• Maybe reply: Danny.Wang@xxxxxxxxxxxxxx: "Re: Priviledge levels commands"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

   
Hi guys,
I'm doing an ASET Lab, and run into some problems. The
commands I'm using don't work as they supposed to.
What I am asked to do is to configure AAA and create 2
different users (user1 and user2) with privilege level
6 and 3.
User1 (level 6) should be able to disconnect existing
session to the router, perform deb ip pack and see ip
routing table.
User2 (level 3) should be able to check who is
curently logon into router,but he should not be able
to deb ip packets or see the routing table.
Does anybody know how to do it?How to confine user to
specific set of commands. I think I'm missing some
important commands.
Is this enough:
privilege exec level 6 show ip route
privilege exec level 6 deb ip packet
privilege exec level 1 show ip
privilege exec level 1 deb
Thanks
Paul

• Next message: John White: "RE: dialer laod-threshold"
• Previous message: kpalmer: "ccie web page/self doc"
• Next in thread: Danny.Wang@xxxxxxxxxxxxxx: "Re: Priviledge levels commands"
• Maybe reply: Danny.Wang@xxxxxxxxxxxxxx: "Re: Priviledge levels commands"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Sat Sep 07 2002 - 19:36:27 GMT-3