Subscribe
Allow user view Running/Startup-Config (red-only) in Cisco IOS
Posted on May 12, 2008 under Cisco | 2 CommentsTags:Cisco ios privilege read-only running-config startup-config
If you want to allow a low-priviledged user on a Cisco router or a Switch to view the Startup Config then this can be done in Routers and Switches running Cisco IOS.
This infact is a simple 2 step procedure as follows:
Set Privileges to view Startup Config
From the Global configuration mode, set the permissions for the privilege level 3. This should allow the users set with privilege level 3 to view the startup config.
ciscorouter(config)# privilege exec level 3 show startup-config
Create User with the privilege
ciscorouter(config)# username operations priv 3 password opsuser
The above creates a new local user named "operations" on the Cisco router with password "opsuser"
Set privileges to view Running-config
To make the user view the running configuration. It gets a bit more complex. Set the privilege as follows:
ciscorouter(config)# privilege exec all level 3 show running-config
This will set the permissions to view the running config but only when viewed as follows
ciscorouter# show running-config view full
On the other hand, all the show commands will be enabled for the user.
by student, on September 24 2008 @ 1:15 pm
hmm it seems commands are different for switches than routers… i can’t put in “privilege exec all level 3 show running-config” as there is no all any ideas?
by Ciscozine, on November 18 2008 @ 4:25 am
There are 16 different privilege levels that can be used. Level 0 is user mode. Level 15 is the privileged mode. Level 1 through 14 are available for customization and use.
http://www.ciscozine.com/2008/10/23/multiple-privilege-levels/