02-18-2008 08:46 AM - edited 03-10-2019 03:39 PM
The goal....
1. local usernames on a router to control access
2. Use privilege levels in the username command to reflect what a user is allowed to do
3. Define a set of commands available to users with privilege level 1
My trouble here is that I cannot seem to find this exact combination of commands for what I want to do on CCO or Google. I have tried several combinations and here is what I have so far, but its not working.
aaa new-model
!
aaa authentication login default local
aaa authorization commands 1 default local
!
username engineer priv 15 pass XXXX
username tech priv 1 pass XXXX
!
privilege exec level 1 traceroute
â¨privilege exec level 1 ping
!
02-18-2008 08:50 AM
Hi,
This link answers your question.
http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a00800949d5.shtml
aaa authori command is not reqd.
Regards,
~JG
Do rate helpful posts
02-18-2008 09:13 AM
JG, thanks for the reply I pasted the config shown there into my router, reloaded, its not working as they described it would.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: