I'm working on a project for the team where we can have a lower priv account that would be used for our Level 1 techs who can power cycle PoE devices like phones, cameras, and wireless access points. I don't want the L1 techs to have access to anything else but to manage the interfaces and cycle PoE. I have that level of access locked down for the CLI and it works, but is there anyway to give this level of restricted access to only power cycle within the WebUI?
(For those curious here is the priv commands I'm using to lock down everything the L1 techs don't need)
user Level1Tech priv 7 sec Password
privilege exec level 4 configure terminal
privilege configure level 5 interface
privilege interface level 6 power inline never
privilege interface level 6 power inline
privilege interface level 6 power
privilege interface level 6 no power inline never
privilege interface level 6 no power inline
privilege interface level 6 no power
privilege interface level 7 shutdown
privilege interface level 7 no shutdown
privilege interface level 6 no
privilege configure level 15 cfg-mode
privilege configure level 15 wsma
privilege configure level 15 netconf
privilege configure level 15 xmpp
privilege configure level 15 mac-address-table
privilege configure level 15 call
privilege configure level 15 beep
privilege configure level 15 license
privilege configure level 15 cts
privilege configure level 15 config-register
privilege configure level 15 boot-end-marker
privilege configure level 15 boot-start-marker
privilege configure level 15 sasl
privilege interface level 15 linksec-shim
privilege interface level 15 ospfv3
privilege exec level 15 access-profile
privilege exec level 15 app-hosting
privilege exec level 15 connect
privilege exec level 15 crypto
privilege exec level 15 disconnect
privilege exec level 15 do-exec
privilege exec level 15 ethernet
privilege exec level 15 help
privilege exec level 15 license
privilege exec level 15 mrinfo
privilege exec level 15 mstat
privilege exec level 15 mtrace
privilege exec level 15 name-connection
privilege exec level 15 release
privilege exec level 15 renew
privilege exec level 15 rep
privilege exec level 15 resume
privilege exec level 15 routing-context
privilege exec level 15 set
privilege exec level 15 stack-mac
privilege exec level 15 switch
privilege exec level 15 systat
privilege exec level 15 tclquit
privilege exec level 15 telnet
privilege exec level 15 terminal
privilege exec level 15 tunnel
privilege exec level 15 where
privilege exec level 15 who
privilege exec level 15 clear
privilege exec level 15 lock
privilege exec level 15 login
