Re: Views

Hi Sadiq

I have now solved the problem. Thank you for the suggestion but I was
already aware that I can use "enable view" command to get to the
correct view.
However this defeats the object of assigning views to different usernames.
I tried telnetting to my router from another router and it worked
fine. Then I realised that I was not authorizing my console
connection, After authorizing console
I can now go straight into the correct view using, local username and password.

Thanks for looking at this.

On 26 October 2010 23:48, Sadiq Yakasai <sadiqtanko_at_gmail.com> wrote:
> Hi Muzammil,
>
> You need to executive the following CLI: "enable view" and this is when you
> enter your normal enable password. That should then allow you to log in with
> the user and get directly into the "view" in question.
>
> HTH,
> Sadiq
>
> Rack1R1#show parser view
> No view is active ! Currently in Privilege Level Context
> Rack1R1#sh run | i aaa
> aaa new-model
> aaa authentication login default local
> aaa authorization exec default local
> aaa session-id common
> Rack1R1#sh run | s parser
> parser view DEBUG
> secret 5 $1$kk2c$f.O28ZVRmbuAp9swMe2HT1
> commands exec include all undebug
> commands exec include show running-config
> commands exec include show
> commands exec include all debug
> Rack1R1#
> Rack1R1#
> Rack1R1#
> Rack1R1#enable view
> Password:
>
> Rack1R1#
> Rack1R1#
> *Oct 27 00:21:37.527: %PARSER-6-VIEW_SWITCH: successfully set to view
> 'root'.
> Rack1R1#ena
> Rack1R1#show parser view ?
> all Show all views
> | Output modifiers
> <cr>
>
> Rack1R1#show parser view
> Current view is 'root'
> Rack1R1#ena
> Rack1R1#sh run | I USER
> Rack1R1#sh run | I user
> username cisco view DEBUG password 0 cisco
> Rack1R1#150.1.1.1
> Translating "150.1.1.1"
> Trying 150.1.1.1 ... Open
>
>
> User Access Verification
>
> Username: cisco
> Password:
>
> Rack1R1#show parser view
> ^
> % Invalid input detected at '^' marker.
>
> Rack1R1#show view
> ^
> % Invalid input detected at '^' marker.
>
> Rack1R1#?
> Exec commands:
> <1-99> Session number to resume
> debug Debugging functions (see also 'undebug')
> enable Turn on privileged commands
> exit Exit from the EXEC
> show Show running system information
> undebug Disable debugging functions (see also 'debug')
>
> Rack1R1#show ?
> flash: display information about flash: file system
> running-config Current operating configuration
>
> Rack1R1#
>
> On Tue, Oct 26, 2010 at 9:09 PM, Muzammil Malick <malickmuz_at_gmail.com>
> wrote:
>>
>> Hi
>>
>> Config as follows:
>>
>> R6#sh run
>> Building configuration...
>>
>> Current configuration : 1275 bytes
>> !
>> version 12.4
>> service timestamps debug datetime msec
>> service timestamps log datetime msec
>> no service password-encryption
>> !
>> hostname R6
>> !
>> boot-start-marker
>> boot-end-marker
>> !
>> enable secret 5 $1$QrH2$7k3jMwUrv0jhrW.4Z.wjs0
>> !
>> aaa new-model
>> !
>> !
>> aaa authentication login default local
>> aaa authorization exec default local
>>
>> aaa session-id common
>> memory-size iomem 5
>> ip cef
>> !
>> no ip domain lookup
>> !
>> multilink bundle-name authenticated
>> !
>> username ops view DEBUG password 0 cisco
>> archive
>> log config
>> hidekeys
>> !
>> interface Loopback1
>> ip address 1.1.1.1 255.255.255.255
>> !
>> interface FastEthernet0/0
>> ip address 192.168.0.2 255.255.255.0
>> duplex auto
>> speed auto
>> !
>> interface FastEthernet0/1
>> no ip address
>> shutdown
>> duplex auto
>> speed auto
>> !
>> ip forward-protocol nd
>> ip route 10.0.0.0 255.0.0.0 192.168.0.1
>> ip route 192.168.1.2 255.255.255.255 192.168.0.1
>> !
>> ip http server
>> no ip http secure-server
>> !
>> control-plane
>> !
>> line con 0
>> logging synchronous
>> line aux 0
>> line vty 0 3
>> line vty 4
>> parser view DEBUG
>> secret 5 $1$3.6B$is2QR6ttA4HHDD/KduJkj0
>> commands exec include all undebug
>> commands exec include show running-config
>> commands exec include show
>> commands exec include all debug
>>
>> end
>>
>> R6# sh ver
>> Cisco IOS Software, 3700 Software (C3725-ADVENTERPRISEK9-M), Version
>> 12.4(15)T9, RELEASE SOFTWARE (fc5)
>> Technical Support: http://www.cisco.com/techsupport
>> Copyright (c) 1986-2009 by Cisco Systems, Inc.
>> Compiled Tue 28-Apr-09 16:14 by prod_rel_team
>>
>> ROM: ROMMON Emulation Microcode
>> ROM: 3700 Software (C3725-ADVENTERPRISEK9-M), Version 12.4(15)T9,
>> RELEASE SOFTWARE (fc5)
>>
>>
>>
>> On 26 October 2010 20:37, Sadiq Yakasai <sadiqtanko_at_gmail.com> wrote:
>> > Can we see a "show run all" as well as a "show ver" please?
>> >
>> > Thanks,
>> > Sadiq
>> >
>> > On Tue, Oct 26, 2010 at 8:04 PM, Muzammil Malick <malickmuz_at_gmail.com>
>> > wrote:
>> >>
>> >> HI All
>> >>
>> >> I am having some problems with "views"
>> >>
>> >> I have the following config:
>> >>
>> >> aaa new-model
>> >> !
>> >> !
>> >> aaa authentication login default local
>> >> aaa authorization exec default local
>> >>
>> >> username ops view DEBUG password 0 cisco
>> >>
>> >>
>> >> parser view DEBUG
>> >> secret CCIE
>> >> commands exec include all undebug
>> >> commands exec include show running-config
>> >> commands exec include all debug
>> >>
>> >>
>> >> When I log into the router this is what happens:
>> >>
>> >>
>> >> User Access Verification
>> >>
>> >> Username: ops
>> >> Password:
>> >>
>> >> R7>sh parser view
>> >> No view is active ! Currently in Privilege Level Context
>> >> R7>
>> >>
>> >>
>> >> From what i understood, when a view is assigned to a username, when
>> >> logged in with that username the view should be enabled automatically.
>> >> Am i missing something?
>> >>
>> >> Thanks in advance
>> >>
>> >>
>> >> Blogs and organic groups at http://www.ccie.net
>> >>
>> >> _______________________________________________________________________
>> >> Subscription information may be found at:
>> >> http://www.groupstudy.com/list/CCIELab.html
>> >>
>> >>
>> >>
>> >>
>> >>
>> >>
>> >>
>> >
>> >
>> >
>> > --
>> > CCIEx2 (R&S|Sec) #19963
>> >
>
>
>
> --
> CCIEx2 (R&S|Sec) #19963

Blogs and organic groups at http://www.ccie.net
Received on Wed Oct 27 2010 - 00:06:46 ART