Hi,
I am testing the privilege command on my router and have created different user accounts with different privilege levels but when logging in using any of these users they all give me privilege 15 unexpectedly!!
For example when logging with a user of privelege 3, when going to the enable mode and issuing the command "show priv" it gives me privilege 15!
Can you please have a look at my config and advise on this!
version 12.4
service timestamps debug datetime msec
service timestamps log datetime msec
no service password-encryption
!
hostname Router
!
boot-start-marker
boot-end-marker
!
logging buffered 51200 warnings
!
aaa new-model
!
!
aaa authentication login default local
aaa authorization exec notest none
!
aaa session-id common
!
resource policy
!
ip subnet-zero
username cisco privilege 15 secret xxx
username user
username manager privilege 3 password 0 manager
!
!
!
!
!
interface FastEthernet0/0
description $ETH-LAN$$ETH-SW-LAUNCH$$INTF-INFO-FE 0/0$
ip address 10.2.2.254 255.255.255.0
ip accounting output-packets
ip accounting precedence input
duplex auto
speed auto
!
interface FastEthernet0/1
ip address 10.1.1.254 255.255.255.0
duplex auto
speed auto
!
router rip
version 2
network 10.0.0.0
no auto-summary
!
ip classless
ip route 0.0.0.0 0.0.0.0 10.2.2.5
!
ip http server
ip http access-class 23
privilege interface level 3 shutdown
privilege interface level 3 ip address
privilege interface level 3 ip
privilege configure level 3 interface
privilege exec level 1 clock
privilege exec level 3 configure terminal
privilege exec level 3 configure
!
line con 0
login authentication test
transport output none
line aux 0
transport output none
line vty 0 3
privilege level 15
transport input telnet ssh
transport output none
line vty 4
privilege level 15
rotary 45
transport input telnet ssh
transport output none
line vty 5 15
access-class 23 in
privilege level 15
transport input none
transport output none
!
scheduler allocate 20000 1000
ntp authentication-key 1 md5 xxx
ntp master 2
ntp update-calendar
!
end
R/ Haitham
