06-03-2003 06:17 AM - edited 03-09-2019 03:31 AM
I want to create a user who has the access to sh running config and extended ping but can not modify the config. How to do that? I have tried with 'priviledge exec level 10 more system:running-config' but after that in 'show runn' the output is blank.
06-03-2003 11:17 AM
Hi,
Is the user login in at the proper privilege level? If the command is set at level 10, then the user can login at priv level 10 by entering
enable 10
example:
enable password level 10 pswd10
privilege exec level 10 clear line
More info on this link;
Hope this helps.
Thanks.
yatin
06-03-2003 11:32 AM
Also, did you turn on AAA authorization? Try configuring the below on this router;
aaa new-model
aaa authentication login default group tacacs local
aaa authorization exec default group tacacs local
username abc privilege 2 password abc
username boss priv 15 password boss
privilege exec level 2 show running-config
More info on the 'sh runn' command issues;
http://www.cisco.com/warp/public/63/showrun.shtml
Thanks,
yatin
06-04-2003 06:51 AM
After this router accepts sh runn command but shows nothing in configuration.
As per the following link it can not be done. Am I right?
http://www.cisco.com/en/US/tech/tk583/tk642/technologies_tech_note09186a00800949d5.shtml
Thanks,
06-05-2003 03:08 PM
Hi,
Please refer to the following URL for work-around.
http://www.cisco.com/warp/public/63/showrun.shtml
Thanks,
Mynul
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: