Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
242
Views
5
Helpful
1
Replies

restricted local user

grunky
Level 1
Level 1

‎10-06-2003 09:24 PM - edited ‎03-02-2019 10:49 AM

I have SEVERAL routers that need to have their running configs backed up automatically on a weekly - or at least monthly - basis.

I'm calling a shell script via cron thats doing this just fine. The only thing missing is some fine grain control what the user can do.

Now I have a local user defined in the router but its a full fledged user. I like to have an account that can ONLY use the copy command, ie 'copy running-config tftp://blah/blah/blah'.

Suggestions?

P.S. I tried to backup the running-config via a snmp query but that kinda fell through - no resources found.

Labels:
0 Helpful
1 Reply 1

liviu.gheorghe
Spotlight
Spotlight

‎10-06-2003 11:16 PM

The way to do this is to define a user with privilege level 2:

username xxx privilege 2 password yyy

Define an enable password for privilege level 2:

enable secret level 2 blabla

After that define what additional commands the user with privilege 2 has access to:

privilege exec level 2 copy

privilege exec level 2 copy startup-config

Cheers,

Liviu

Regards, LG
*** Please Rate All Helpful Responses ***
Customers Also Viewed These Support Documents