I don't know if I writting on the right forum, excuse me for that, but I'll go straight to the point.
I was assigned the task to allocate the CLI commands per user basis, and by now the only options that I seem to found was role-based view and command privilege levels, but I am wondering if there is any other option that you know about.
Let me clarify myself, one of my goals is to create an user, called help-desk or whatever, that connects by an vty line and could only access to some resources of the Cisco devices, like for example, could run a "show running-config" and I would like that the result of it would be the prompt of full configuration without showing , for example, the aaa and usernames config.
Any help or directions would be very appreciated
PD: Sorry if you found some grammatical mistakes, my English is quite basic
And of course, if some further information is needed, I would be pleased of provide it.
Your English is quite understandable and, yes, this is a good place to ask your question. Welcome.
From the installations that I have seen the command privilege levels approach is most commonly used for this sort of requirement.
It is pretty basic to set it up and described by Cisco in the IOS configuration guide and a few whitepapers on cisco.com. Some of the better illustrations of how to do this are on 3rd party sites. For example:
Earlier this year, we released Cisco Identity Services Engine (ISE) 2.6. It delivered a broad new set of features and greater scale - a big stride for both better NAC services that ISE delivers and better Software-Defined Access. Today, we’re thril...
Integrating Cisco Identity Services Engine with Cisco Meraki Systems Manager
Technical Marketing Engineer, Cisco Systems, Inc.
Cisco Meraki Systems Manager is a cloud base endpoint management solu...
Existing customers may download the Cisco Identity Services Engine (ISE) 2.7 which was released on November 18, 2019. For 90-day evaluations of ISE, please see How to Get ISE Evaluation Software & Licenses.
ISE 2.7 Guest Access Management Features
The following document explains the guest features of ISE 2.7. For more detail of what ISE 2.7 has to offer please check the associated documentation.
Auto Login on Sponsor Approval
SymptomsOutage during FTD code upgrade DiagnosisThe FTD code upgrade thru FMC will cause the traffic interruptionSolutionBelow process will upgrade the FTD with no downtime and no traffic interruption.Before the upgrade process:Download the FTD platf...