From: Larry Roberts (Groupstudy@american-hero.com)
Date: Mon Jan 03 2005 - 01:05:15 GMT-3
Thats normal.
Your user will only be able to see things that they can configure/get to.
permit your user to be able to access interfaces and you will then be
able to see the interfaces
username level10user privilege 11 password 0 cisco
!
privilege configure level 10 interface
privilege exec level 10 show running-config
privilege exec level 10 show
!
R1#telnet 192.168.48.1
Trying 192.168.48.1 ... Open
Username: level10user
Password:
R1#sho run
Building configuration...
Current configuration : 102 bytes
!
!
!
!
!
interface Ethernet0/0
!
interface Serial0/0
!
interface Serial0/0.1 point-to-point
!
!
end
R1#
Michael Wong wrote:
> Hi,
>
> I run into an AAA authorization issue. Here is the relevant config lines:
>
> aaa new-model
> aaa authentication login ciscotemp1 group tacacs+ local
> aaa authorization exec ciscotemp2 group tacacs+ local
>
> username user1 privilege 10 password 7 060506324F41
>
> privilege exec level 10 show running-config
>
>
> When I telnet into the router (either AAA server is up using AAA authorization, or down using local authorization), the following is the outcome:
>
> R4#show running-config
> Building configuration...
> Current configuration : 13 bytes
> !
> !
> !
> !
> end
> R4#
>
> Why the show running-config outcome has no real config in it? Am I missing some config?
>
> thanks,
> Michael
>
> __________________________________________________
> Do You Yahoo!?
> Tired of spam? Yahoo! Mail has the best spam protection around
> http://mail.yahoo.com
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Wed Feb 02 2005 - 22:10:18 GMT-3