Solved: Re: Unable to do changes - Current privilege level: -1 - Page 2

ziqex · ‎03-03-2022

Hi,

I authenticate with the switch with ACS.

Authentication is successful but I am unable to run show run or make change in configure terminal.

sh privilege
User name: testacc
Current privilege level: -1
Feature privilege: Disabled

sh run
% Permission denied for the role

Hardware
cisco Nexus5548 Chassis

Reason: Reset Requested by CLI command reload
System version: 7.3(7)N1(1b)

Please advise how can I resolve it. Thank you.

Regards,

Daniel

balaji.bandi · ‎03-08-2022

have this configuration written ?

In this case Looks like it locked up now, you have only Option here is console, try connect to console , since it confgured as local.

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

ziqex · ‎03-09-2022

I still have remote access to the device. Is there any command that will allow me to have option to change configuration?

In the current state I can only view show commands.

Thanks

balaji.bandi · ‎03-09-2022

if you have remote access, are you using local account or radius loging ?

do you have any config command access :

post aaa command information what configured

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

ziqex · ‎03-09-2022

I am using account that was created in ACS, it has Value: shell:roles*"network-admin vdc-admin" assigned to the shell profile.

It still prevents me from creating new vlans in the configuration mode. Thanks

sh run aaa

!Command: show running-config aaa

aaa authentication login default group ACS_Servers local
aaa authentication login console local
aaa authorization config-commands default group ACS_Servers