Local username and privilege on PIX

Unanswered Question
Jan 31st, 2007

Hi.

I am trying to configure a username to allow some users to telnet to a PIX from the inside and execute 3 commands only

show crypto

show access-list

show run

I have used these commands

aaa-server LOCAL protocol local

telnet 1.1.1.1 255.255.255.255 inside

privilege show level 2 command run

privilege show level 2 command crypto

privilege show level 2 command running-config

username russell password PASSWORD privilege 2

When I do this and test. I get privelege level 2 when I login but I can run any command. PLease see below. Am i missing something obvious?

Rgds,

Russell.

Username: russell

Password: ********

Type help or '?' for a list of available commands.

PIX> login

Username: russell

Password: ********

PIX# sh curpriv

Username : russell

Current privilege level : 2

Current Mode/s : P_PRIV

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 4 (1 ratings)
Loading.

Actions

This Discussion