Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
555
Views
4
Helpful
2
Replies

setting privilege levels on a router

bigrut
Level 1
Level 1

‎06-28-2003 10:52 AM - edited ‎03-02-2019 08:29 AM

we have set privilege levels to 10 for several local accounts. all of the commands we allow seem to work fine except "show running-config". The output below is all we see when we do sho run. is this correct or is there something else we need to do?

Current configuration : 161 bytes

!

! Last configuration change at 18:49:13 UTC Sat Jun 28 2003 by rutledgek

! NVRAM config last updated at 18:26:35 UTC Sat Jun 28 2003 by rutledgek

!

!

!

!

end

Labels:
0 Helpful
2 Replies 2

ERIK LAWAETZ
Level 1
Level 1

‎06-29-2003 01:35 PM

This is actually correct behaviour.

The essance of it is that all the configuration commands are at privilege level 15, so IOS is showing you the parts of the configuration allowed at privilege level 10.

An alternative is to define a local user with an "autocommand" that allows access to reading the config only:

username readconfig password xxx

username readconfig privilege 15

username readconfig autocommand sh running

bigrut
Level 1
Level 1
In response to ERIK LAWAETZ

‎07-12-2003 03:41 PM

Thanks, I'll try it.

0 Helpful
Customers Also Viewed These Support Documents