*** We want to do one user will login my router/switch and can do some allowed commands
Cisco IOS actually offers 16 different privilege levels(0-15), 15 is the full controll
User EXEC mode—privilege level 1
Privileged EXEC mode—privilege level 15
When we write enable it will directly go to privilege level 15
** We want to do one user will login my router/switch and can do some allowed commands
==================
enable
enablepassword
conf t
enable secret level 8 switchenablepassword
privilege interface level 8 shutdown
privilege interface level 8 ip address
privilege interface level 8 ip
privilege interface level 8 bandwidth
privilege configure level 8 interface
privilege exec level 8 conf terminal
privilege exec level 8 show startup-configuration
privilege exec level 8 show startup-config
privilege exec level 8 config interface
privilege exec level 8 configure
privilege exec level 8 interface
privilege exec level 8 show running-config
privilege exec level 8 show
privilege exec level 8 write
privilege exec level 8 copy running-config startup-config
exit
wri
===============
when user enter to switch, he will enter "enable 8" and password will be 'switchenablepassword'
No comments:
Post a Comment