objective=allow particular user to have privilege level 15 access to a device except router command
- i was trying to achieve the above but cant. my observation is i cant deny any commands under the config mode. but commands like ping,show,configure which are under the exec mode could be denied easily.
thanks in advance for any help.