Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4559
Views
5
Helpful
4
Replies

Privilege level command in cisco

Go to solution
santoshbajimaya
Level 1
Level 1

‎11-30-2018 01:12 PM - edited ‎03-08-2019 04:43 PM

I have been working on configuring lower privilege levels for my organization network devices (cisco). I have been testing privilege commands; creating access to specific commands for level 5 users. But when I delete that specific command that I created for level 5 privilege, the commands get shifted to level 15 privilege. 

As per my knowledge, level 15 is the highest privilege level. It has access to everything inside a cisco device. So, why it keeps on showing me the level 15 privilege commands. How can I get rid of those commands in my configuration?

The "no" commands don't work possibly we can't delete any access for privilege level 15.

I have hereby attached the screen shot of the issue.

Any suggestions.

 

Labels:
Preview file
40 KB
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP
In response to santoshbajimaya

‎11-30-2018 01:57 PM

Hello,

 

if you just want to get rid of the line in your running config, use:

 

privilege exec reset line

 

where 'line' is the exec command you have configured...

View solution in original post

4 Replies 4

Go to solution
Georg Pauwen
VIP
VIP

‎11-30-2018 01:31 PM

Hello,

 

I am not clear on what you are doing. You need to assign users to privilege levels, if you delete a privilege 5 command it will always be available on level 15.

 

Can you post the full config of your router ?

0 Helpful

Go to solution
santoshbajimaya
Level 1
Level 1
In response to Georg Pauwen

‎11-30-2018 01:44 PM

Actually, I have a Radius server for AAA authentication from my AD. I have configured it for AD groups for privilege level users as well. I am just testing the privilege level (here level 5) for implementation in future to restrict the switch access to support staffs other than the admin staffs who will be using privilege level 15. 

I am just testing configuring my switch for commands that I want level 5 users be able to use. I am just configuring commands and removing them as needed for the test. So, whenever I delete any configured commands for level 5 with "no" command, that commands shifts to privilege level 15 in the running configuration as shown in the picture uploaded earlier.

I can't provide you with my full configuration because of security policy. Sorry.

 

0 Helpful

Go to solution
Georg Pauwen
VIP
VIP
In response to santoshbajimaya

‎11-30-2018 01:57 PM

Hello,

 

if you just want to get rid of the line in your running config, use:

 

privilege exec reset line

 

where 'line' is the exec command you have configured...

Go to solution
santoshbajimaya
Level 1
Level 1
In response to Georg Pauwen

‎11-30-2018 02:10 PM

Thank you very much.. That really helped getting rid of those commands being shown in configuration.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card