cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
145
Views
0
Helpful
1
Replies
Highlighted

Limiting priviledges to Local User Account..

hi all,


I need to create a user in the cisco router and enable the following commands only.

Show Commands :
sh ip access-lists
sh arp


Privilege Commands :

enable
configure terminal
ip access-list extended test
  permit ip any any
int serial 0
  ip access-group test in


It is required to implement this without using ACS and I created a local user using the
following command.

username test pri 0 password testpass


Problem 1 : But once I logged to the router using the above username and password , that particular user
can execute any command. How can this happened ?

Problem 2 : Is there any way to limiting the commands without using the ACS ?

Problem 3 : If I cannot implement this without using the ACS , what's the best solution I can provide ?
     Can I limit the access using priviledge level (0-15) in username command ?


Thanks

Everyone's tags (3)
1 REPLY 1
Advisor

Limiting priviledges to Local User Account..

Hi,

yes this is possible without ACS.

http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gtclivws.html

Regards.

Alain

Don't forget to rate helpful posts.

Don't forget to rate helpful posts.
CreatePlease to create content
Content for Community-Ad
August's Community Spotlight Awards