10-04-2004 01:18 AM
Hello,
With a username (level user) and restrictions with dir-access & restrict commands on a CSS, the command "sh run" is always authorized.
Is there anybody that knows how to prohibit this command ?
Thanks for your help.
10-04-2004 02:33 AM
if you have the commmand 'tacacs authorize non-config' it should request authorization for this command.
Then you have to make sure your tacas server restrict access to this command.
Gilles.
10-13-2004 07:37 AM
Thanks for your answer.
But if the username is local (with user privilege), without using a radius or tacacs+ server, how to prohibit the "sh run" command. I don't want that my customer sees the configuration.
Thanks for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide