Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
341
Views
9
Helpful
4
Replies

Privilege Levels

aciscolook
Level 1
Level 1

‎05-31-2008 01:28 PM - edited ‎03-09-2019 08:48 PM

I set up a basic call center application inside of a CME box. This application also provides some statistics that the customer would like to view. The problem is that requires CLI access to view the information. As I would like to give them minimal access to the CLI, what would be the appropriate way to do this? It requires privileged mode to view these statistics.

Thanks in advance for help.

Labels:
0 Helpful
4 Replies 4

Farrukh Haroon
VIP Alumni
VIP Alumni

‎05-31-2008 10:26 PM

Hello, you can just bring down whatever command the customer needs to a lower level and then create a user account on the router (for that privilege level). Or a less secure method would be to create an 'enable' password for that level (lets say level 7) and give it to the customer.

Have a look at the following links:

http://articles.techrepublic.com.com/5100-10878_11-5659259.html

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftprienh.html#wp1027258

http://www.cisco.com/en/US/docs/ios/12_2/security/configuration/guide/scfpass.html

Regards

Farrukh

Jagdeep Gambhir
Level 10
Level 10

‎06-02-2008 05:25 AM

I would suggest to use command authorization feature in case you have ACS in your network. Pls see this link,

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

This way you will have total control on every individual on your network.

Regards,

~JG

michael.leblanc
Level 4
Level 4

‎06-02-2008 11:37 AM

Take a look at the Role-Based CLI Access feature:

http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gtclivws.pdf

aciscolook
Level 1
Level 1
In response to michael.leblanc

‎06-02-2008 11:59 AM

Hmmm...This looks promising. I'll give it a try

Thanks

0 Helpful
Customers Also Viewed These Support Documents