Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
399
Views
0
Helpful
2
Replies

Restricting User Privilege

mcam
Level 1
Level 1

‎10-04-2004 01:18 AM

Hello,

With a username (level user) and restrictions with dir-access & restrict commands on a CSS, the command "sh run" is always authorized.

Is there anybody that knows how to prohibit this command ?

Thanks for your help.

Labels:
0 Helpful
2 Replies 2

Gilles Dufour
Cisco Employee
Cisco Employee

‎10-04-2004 02:33 AM

if you have the commmand 'tacacs authorize non-config' it should request authorization for this command.

Then you have to make sure your tacas server restrict access to this command.

Gilles.

0 Helpful

mcam
Level 1
Level 1
In response to Gilles Dufour

‎10-13-2004 07:37 AM

Thanks for your answer.

But if the username is local (with user privilege), without using a radius or tacacs+ server, how to prohibit the "sh run" command. I don't want that my customer sees the configuration.

Thanks for your help.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card