https://community.cisco.com/t5/network-security/limited-show-running-right/m-p/2259523#M920698 <HTML><HEAD></HEAD><BODY><P>I believe if you set the privilege level of the snmp-server and related commands higher than the user's privilege level that should do the job. I just tried this and found it a bit tricky in practice. You might be able to get that to work with enoughtweaking.</P><P></P><P>I also tried (successfully) using the autocommand feature. Have the autocommand execute thus:</P><P></P><P>&nbsp;&nbsp;&nbsp;&nbsp; username six autocommand show run | ex host | address </P><P></P><P>However that does exclude all "ip address" lines, not just WAN ones. It will prevent the user from doing anything else though - they are logged out as soon as "show run" reached the end of the config.</P></BODY></HTML> Fri, 21 Jun 2013 18:11:19 GMT Marvin Rhoads 2013-06-21T18:11:19Z https://community.cisco.com/t5/network-security/limited-show-running-right/m-p/2259522#M920697 <P>I have to share show running rights with a clinet. i want to restrict out put in a way. it should not show my SNMP IP, and WAN interface IPs. can i do this ?</P><P>thanks</P> Fri, 21 Feb 2020 12:54:47 GMT https://community.cisco.com/t5/network-security/limited-show-running-right/m-p/2259522#M920697 usman.ahmad 2020-02-21T12:54:47Z https://community.cisco.com/t5/network-security/limited-show-running-right/m-p/2259523#M920698 <HTML><HEAD></HEAD><BODY><P>I believe if you set the privilege level of the snmp-server and related commands higher than the user's privilege level that should do the job. I just tried this and found it a bit tricky in practice. You might be able to get that to work with enoughtweaking.</P><P></P><P>I also tried (successfully) using the autocommand feature. Have the autocommand execute thus:</P><P></P><P>&nbsp;&nbsp;&nbsp;&nbsp; username six autocommand show run | ex host | address </P><P></P><P>However that does exclude all "ip address" lines, not just WAN ones. It will prevent the user from doing anything else though - they are logged out as soon as "show run" reached the end of the config.</P></BODY></HTML> Fri, 21 Jun 2013 18:11:19 GMT https://community.cisco.com/t5/network-security/limited-show-running-right/m-p/2259523#M920698 Marvin Rhoads 2013-06-21T18:11:19Z