Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
13519
Views
5
Helpful
4
Replies

%Permission denied for the role for N5K in role network-operator

Go to solution
alioune-ndiaye
Level 1
Level 1

‎07-14-2016 12:32 PM - edited ‎03-08-2019 06:38 AM

%Permission denied for the role
Hello expert,

Could you explain me please why I get this error message %Permission denied for the role with role network-operator if I do sh running-config?

N5K,

Version:7.0(8)N1(1)If i understand i should have read access, right?

# show running-config

% Permission denied for the role

many thanks

Alioune

2 people had this problem
Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni

‎07-14-2016 02:46 PM

Hi

You can do show role but as far as I remember the show run is not part of that role. You need to create  a new role by specifying rule 1 permit command show running-config.

It needs more rights to have a view of the show run and you can't modify the default role.

Thanks

PS: Please don't forget to rate and mark as correct answer if this solved your issue


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question

View solution in original post

0 Helpful
4 Replies 4

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni

‎07-14-2016 02:46 PM

Hi

You can do show role but as far as I remember the show run is not part of that role. You need to create  a new role by specifying rule 1 permit command show running-config.

It needs more rights to have a view of the show run and you can't modify the default role.

Thanks

PS: Please don't forget to rate and mark as correct answer if this solved your issue


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful

Go to solution
alioune-ndiaye
Level 1
Level 1

‎07-18-2016 01:48 AM

Thanks you for clarifying my doubls.

Kind regards

Alioune

0 Helpful

Go to solution
alioune-ndiaye
Level 1
Level 1

‎07-18-2016 07:56 AM

Supportlan,

What  would be if we  do not use local  data base, instead my end customer use RADIUS/TACACS..

He told me that the script worked fine in 5.2(1)N1(7) ,but since the upgrade to 7.0(8)N1(1)  it no longer works .

What I understand is that whatever method (local or raduis/tacacs) you have to create a new role.

What are your thoughts?

0 Helpful

Go to solution
Francesco Molino
VIP Alumni
VIP Alumni
In response to alioune-ndiaye

‎07-18-2016 09:45 AM

Hi

the same applies to radius authentication as you have to push a role. This role has to be defined first on the Nexus itself first.

For Tacacs, it could be a little bit different as you say commands per commands right instead of role.

Thanks

PS: Please don't forget to rate and mark as correct answer if this solved your issue


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card