12-18-2018 12:24 AM - edited 03-08-2019 04:50 PM
Hello Community,
were having a mixed Core Infrastructure with some Cisco Switches and 2 ASA 5585x.
Besides that we have a Syslog and Backup Linux Server running.
So Our Goal is to get the running-config over tftp to our Syslog Server, but we dont want to use a Privilge 15 User for that because the Password is set in Plain Text on this Linux Server and this is an Security Issue.
i did get it to Work with our WS-C3560X-48 Switches, therfore i did use the folowing Commands:
#username configbackup privilege 7 password 7 *********
#privilege exec level 7 copy running-config
With these Steps this User can Copy the Running Config from the Core Devices with only needed Priviliges.
Now the Porblem is that we have some Cisco Nexus Switches, here the above Commands wont work!
Nexus 5010
Nexus 5548
i did try
username configbackup password 5 **************** role priv-7
but i cant set permissions only to do copy running-config to tftp Server.
Maybe sombody can help me out here.
Thank you verry Much
Solved! Go to Solution.
12-18-2018 12:37 AM - edited 12-18-2018 12:51 AM
Hi Gustav
RBAC (role based access control) on Nexus should meet your requirements. One solution would be to create a user with command rules to allow execution only of your required commands.
Please see this link for more details:
Hope this helps. Please rate if it does.
12-18-2018 12:37 AM - edited 12-18-2018 12:51 AM
Hi Gustav
RBAC (role based access control) on Nexus should meet your requirements. One solution would be to create a user with command rules to allow execution only of your required commands.
Please see this link for more details:
Hope this helps. Please rate if it does.
01-21-2019 07:28 AM
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: