I would like to configure 2 groups of users on my 4500s using local authentication .The first group would have access only to the show commands and at the test tdr commands.The other user group would have unlimited access.Is it possible to do it through local authentication or i have to use a RADIUS or TACACS+ server?Keep in mind that the users will access the switches through telnet
If you go for Local use local authentication /authorization then you need to do it on per user basis and not on group basis. Locally we don't have any group. See this link
Best way to manage this set up is via radius or tacacs and set up command authorization using tacacs.
Do rate helpful posts