topic Re: Arguments using Wild Card in Shell Command Authorization in Network Access Control

Arguments using Wild Card in Shell Command Authorization

cypher.jay — Sun, 10 Mar 2019 20:58:56 GMT

Does the Shell Command Authorization Set allow the use of wild card?

For example, under shell command authorization set, what do i put in under arguments if I want to permit the command show interface fastethernet 0/1 to 24 to be executed?

And also, what do i put in as the argument for an ip address if I want to permit "ping x.x.x.x"?

Thanks in advance.

Re: Arguments using Wild Card in Shell Command Authorization

nchopra — Mon, 24 Jan 2005 10:55:57 GMT

hi,

there are two wildcards used under Shell Command Authorization the first one is "^" sign which denotes whatever comes after this is accepted and the second wildcard is "$" which denotes whatever is before. In your case, you can use

Interface FastEthernet 0 1 ^

and

Ping ^

These commands would allow access to every Fastethernet and ping to any IP Addresss.

Re: Arguments using Wild Card in Shell Command Authorization

cypher.jay — Mon, 24 Jan 2005 12:37:14 GMT

Hi,

Thanks. Just what i needed.