hi all,
I need to create a user in the cisco router and enable the following commands only.
Show Commands :
sh ip access-lists
sh arp
Privilege Commands :
enable
configure terminal
ip access-list extended test
permit ip any any
int serial 0
ip access-group test in
It is required to implement this without using ACS and I created a local user using the
following command.
username test pri 0 password testpass
Problem 1 : But once I logged to the router using the above username and password , that particular user
can execute any command. How can this happened ?
Problem 2 : Is there any way to limiting the commands without using the ACS ?
Problem 3 : If I cannot implement this without using the ACS , what's the best solution I can provide ?
Can I limit the access using priviledge level (0-15) in username command ?
Thanks