I don't know if I writting on the right forum, excuse me for that, but I'll go straight to the point.
I was assigned the task to allocate the CLI commands per user basis, and by now the only options that I seem to found was role-based view and command privilege levels, but I am wondering if there is any other option that you know about.
Let me clarify myself, one of my goals is to create an user, called help-desk or whatever, that connects by an vty line and could only access to some resources of the Cisco devices, like for example, could run a "show running-config" and I would like that the result of it would be the prompt of full configuration without showing , for example, the aaa and usernames config.
Any help or directions would be very appreciated
PD: Sorry if you found some grammatical mistakes, my English is quite basic
And of course, if some further information is needed, I would be pleased of provide it.
Your English is quite understandable and, yes, this is a good place to ask your question. Welcome.
From the installations that I have seen the command privilege levels approach is most commonly used for this sort of requirement.
It is pretty basic to set it up and described by Cisco in the IOS configuration guide and a few whitepapers on cisco.com. Some of the better illustrations of how to do this are on 3rd party sites. For example:
SymptomsOutage during FTD code upgrade DiagnosisThe FTD code upgrade thru FMC will cause the traffic interruptionSolutionBelow process will upgrade the FTD with no downtime and no traffic interruption.Before the upgrade process:Download the FTD platf...
Process for FTD migration with PolicyAs per Cisco documentation, we have below steps for for de-register and register process. Please follow below steps :Step 1 : Break HA pair and de-register your FTD from FMC (old).Step 2 : Register your primary FTD wit...
Hi There,Is there a relationship between the hardware of the Cisco ASA 5505 FWs (V02) and the 9.x software version? Multiple ASA have been successfully updated with the same software. The ASAs that have been updated without any problems are V06 versi...
Dear Cisco Customers and Partners,
We know that the Cisco Identity Services Engine (ISE) is a critical element of your network security and so stability is of paramount importance. As a result, many of you asked us for a suggested release given sev...
Over 100-year-old Yokogawa Engineering Asia deploys Cisco Advanced Malware Protection (AMP) to shield itself against cyber attacks. With Cisco Talos threat intelligence, it stays ahead of the latest malicious behavior on the Internet. Learn more at http:/...