Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
316
Views
0
Helpful
1
Replies

Allow some commands and restrict other commands for the User

netsol
Level 1
Level 1

‎06-10-2002 01:40 AM - edited ‎03-08-2019 10:54 PM

Hi to all,

I dont have ACS and any firewalls.Anywhere from the intranet can access all the commands in the router.I Configured the AAA using local database and created only 2 usernames.I want the other user shoult use only few commands in the user & privilaged levels.I can't use the privilage level for a user.How can i authorize the user to use the perticular 3 commands.

Also i want to configure the accounting in which i need to track the commands used by the user.Any one suggest me how to do it in a normal IOS12.2 version.

Thanks

Raj

Labels:
0 Helpful
1 Reply 1

osam
Level 1
Level 1

‎06-12-2002 06:43 AM

In order to have an efficient and scalable authorization and accounting, get TACACS+ (it is free and available on the net) and install it in any Unix platform (can be a PC running linux). If you cannot do this, you will then have to do it the nasty way, which is use local AAA, but this solution will be real ugly.. take a look at the following link for more information,

http://www.cisco.com/univercd/cc/td/doc/cisintwk/intsolns/secsols/aaasols/c262c2.htm

0 Helpful
Customers Also Viewed These Support Documents