Newbie here with a few questions. I've recently moved away from a call center job (phew!) and moved into a position which requires me to configure/deploy ASA5505 devices. Although I feel at ease with basic deployment and basic ACLs, I ran into a few things which have my scratching my head. I started looking into creating additional usernames on an ASA5505. So I create a username "godine" and didn't assign it a privilege level, therefore by default it gets privilege level 2:
ciscoasa5505# show run all username
username godine password XXXXXXX encrypted privilege 2
Why is it that even with that user, I'm able to run commands that require a privilege level of 15? As an example:
ciscoasa5505# show run all privilege | grep pwd
privilege cmd level 15 mode exec command pwd
From that information, it seems that "pwd" requires level 15 acess, however, I'm currently logged in with the user "godine" and when I run pwd:
Furthermore, what is the purpose of "service-type admin" under username XXXX attribute.
Thanks in advance for all the responses!