- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2012 01:47 PM - edited 03-04-2019 06:26 PM
Hi All,
I have created users and given them telnet access to router 7200.
They have full privilges(15) but everytime they login they login into user-exec mode instead of privilege mode.
Is there a way to skip user-exec mode and allow the users to login directly into privilge mode so they dont have to enter password twice?
Thanks!!
Solved! Go to Solution.
- Labels:
-
Other Routing
Accepted Solutions
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2012
03:00 PM
- last edited on
07-21-2023
12:03 AM
by
Translator
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2012
03:00 PM
- last edited on
07-21-2023
12:03 AM
by
Translator
line vty 0 15
privilege level 15
that will do it
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2015
07:00 AM
- last edited on
07-21-2023
12:03 AM
by
Translator
what if I need it to work like this
(straight to priv. mode)
just for one user?
can it be done on an ASA ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2015
02:20 PM
- last edited on
07-21-2023
12:04 AM
by
Translator
The solution suggested in this thread of specifying
privilege-level 15
on the vty will work for IOS devices and will not work on ASA. Also this solution would give ALL users access to privilege mode and not just for one user.
HTH
Rick
Rick
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-12-2015 11:30 PM
OK , then I have new question. How do I get a specific user straight to privilege mode on an Cisco ASA.
p.s. maybe I should open new thread ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2015
07:55 AM
- last edited on
07-21-2023
12:06 AM
by
Translator
Opening a new thread might be a good idea - though at this point we have gone far enough (and I am not sure how much further this discussion will go) that we might as well just continue this thread.
While IOS devices have mechanisms that will allow you to configure that a user goes directly into privilege mode I do not believe that this works on the
ASA - at least
for the command line. If you login to ASDM to manage the
ASA
you will go directly to privilege mode. But for command line
(SSH, telnet, etc)
you will go to user mode and be required to enter another password for privilege mode. I do not know a way to get around that for
ASA
command line.
HTH
Rick
Rick
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-13-2015
08:44 AM
- last edited on
07-21-2023
12:07 AM
by
Translator
Hello
Suppose suggesting basic AAA
username test privilege 15 secret xxxxx.
aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization exec default group tacacs+ local
res
Paul
Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.
Kind Regards
Paul
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-14-2015 07:21 AM
@paul
Love your idea, it shows you actually try not just repeat answers from others but please test it on ASA and not router.
p.s. how do I make it work for just one user ?
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-14-2015 10:06 AM
Hello
the same applys to an generic user account or a specific user account
Res
paul
Please rate and mark as an accepted solution if you have found any of the information provided useful.
This then could assist others on these forums to find a valuable answer and broadens the community’s global network.
Kind Regards
Paul
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
01-15-2015
04:01 AM
- last edited on
07-21-2023
12:08 AM
by
Translator
On the ASA You can try the command below if local user. If using TACACS, replace LOCAL with TACACS
aaa authorization exec LOCAL auto-enable
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
12-18-2012 03:29 PM
Thanks. It worked
