Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
3065
Views
0
Helpful
5
Replies

Partial output at "show running-config" command

antongiulioorsino
Level 1
Level 1

‎08-31-2004 04:19 AM - edited ‎03-10-2019 01:46 PM

Hello, Can anyone, please explain to me why, when typing the above mentioned command (loggin in with a privilege level 14), I just get a partial output.

The router has the following config:

aaa authentication login default group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ local

aaa authorization commands 2 default group tacacs+ local

aaa authorization commands 7 default group tacacs+ local

aaa authorization commands 14 default group tacacs+ local

aaa authorization commands 15 default local group tacacs+

privilege exec level 2 show privilege

privilege exec level 7 show startup-config

privilege exec level 14 show running-config

privilege exec level 2 show

Here the output:

1700#sh run

Building configuration...

Current configuration : 13 bytes

!

!

!

end

Thanks

Labels:
0 Helpful
5 Replies 5

Richard Burts
Hall of Fame
Hall of Fame

‎08-31-2004 02:28 PM

As I understand it, the logic of privilege levels and the show running-config is that you can grant privilege to show running-config to some level less than 15, but if you do not have privilege levels to change something it is hidden in the show running-config. So since privilege level 14 does not have the capability to change anything in the config there is nothing displayed in the show running-config.

Perhaps you might want to try adding to privilege level 14 the ability to configure a few things and see if they do not then show up in the show running-config.

HTH

Rick

HTH

Rick
0 Helpful

antongiulioorsino
Level 1
Level 1
In response to Richard Burts

‎09-01-2004 04:34 AM

At privilege level 14 I want the capability to execute the "show running-config", do not the "configure ..."

However, even if I add this command line in the R:

privilege exec level 14 configure terminal

what I obtain is:

1700(config)#?

Configure commands:

default Set a command to its defaults

end Exit from configure mode

exit Exit from configure mode

help Description of the interactive help system

no Negate a command or set its defaults

1700(config)#

Funny, isn't it?

0 Helpful

p.tavan
Level 1
Level 1
In response to antongiulioorsino

‎09-09-2004 01:13 AM

Hi,

Look at this document explaining your case :

http://www.cisco.com/en/US/tech/tk583/tk642/technologies_tech_note09186a00800949d5.shtml

The command show run displays only the commands that the user is able to modify, if not, he could discover usernames/passwords, and so on...

For you help, you can define a user being able to see all the running config and to be disconnected after :

username inout privilege 15 autocommand show running.

Patrice

0 Helpful

antongiulioorsino
Level 1
Level 1
In response to p.tavan

‎09-16-2004 12:34 AM

Thank you a lot for the help, I apologize for the delay in writing back.

0 Helpful

p.tavan
Level 1
Level 1
In response to antongiulioorsino

‎09-17-2004 12:27 AM

OK no problem !

0 Helpful
Customers Also Viewed These Support Documents