Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Attention: The Community will be in read-only mode on 12/14/2017 from 12:00 am pacific to 11:30 am.

During this time you will only be able to see content. Other interactions such as posting, replying to questions, or marking content as helpful will be disabled for few hours.

We apologize for the inconvenience while we perform important updates to the Community.

New Member

AAA Local with Privilege Levels

The goal....

1. local usernames on a router to control access

2. Use privilege levels in the username command to reflect what a user is allowed to do

3. Define a set of commands available to users with privilege level 1

My trouble here is that I cannot seem to find this exact combination of commands for what I want to do on CCO or Google. I have tried several combinations and here is what I have so far, but its not working.

aaa new-model


aaa authentication login default local

aaa authorization commands 1 default local


username engineer priv 15 pass XXXX

username tech priv 1 pass XXXX


privilege exec level 1 traceroute

privilege exec level 1 ping



Re: AAA Local with Privilege Levels


This link answers your question.

aaa authori command is not reqd.



Do rate helpful posts

New Member

Re: AAA Local with Privilege Levels

JG, thanks for the reply I pasted the config shown there into my router, reloaded, its not working as they described it would.

CreatePlease to create content