Allow user view Running/Startup-Config (red-only) in Cisco IOS

Subscribe |

Comments RSS

Allow user view Running/Startup-Config (red-only) in Cisco IOS

If you want to allow a low-priviledged user on a Cisco router or a Switch to view the Startup Config then this can be done in Routers and Switches running Cisco IOS.

This infact is a simple 2 step procedure as follows:

Set Privileges to view Startup Config

From the Global configuration mode, set the permissions for the privilege level 3. This should allow the users set with privilege level 3 to view the startup config.

ciscorouter(config)# privilege exec level 3 show startup-config

Create User with the privilege

ciscorouter(config)# username operations priv 3 password opsuser

The above creates a new local user named "operations" on the Cisco router with password "opsuser"

Set privileges to view Running-config

To make the user view the running configuration. It gets a bit more complex. Set the privilege as follows:

ciscorouter(config)# privilege exec all level 3 show running-config

This will set the permissions to view the running config but only when viewed as follows

ciscorouter# show running-config view full

On the other hand, all the show commands will be enabled for the user.

Unable to delete Stale/Obsolete statc routes in Cisco IOS (Jul 03, 2008)
How to create VLAN Interfaces for InterVLAN Routing in Cisco IOS (Jul 01, 2008)
High CPU usage when SNMP is enabled in Cisco Routers (Jun 19, 2008)
Configure MD5 encrypted passwords for users on Cisco IOS (May 20, 2008)
Enable/Configure DHCP Snooping in Cisco Catalyst Switches (IOS) (May 15, 2008)

5 Comments so far »

by student, on September 24 2008 @ 1:15 pm

hmm it seems commands are different for switches than routers… i can’t put in “privilege exec all level 3 show running-config” as there is no all any ideas?
by Ciscozine, on November 18 2008 @ 4:25 am

There are 16 different privilege levels that can be used. Level 0 is user mode. Level 15 is the privileged mode. Level 1 through 14 are available for customization and use.

http://www.ciscozine.com/2008/10/23/multiple-privilege-levels/
by siddhu, on October 1 2010 @ 7:05 am

Great work, I tried so many ways to check the whole running config but nothing worked out well.But your commands worked for me, Thanks..
by DIOUM, on June 7 2011 @ 11:49 am

explain me the level privilege 4,6,7,8,9,10,11,12,13 and 14? thanks
by DIOUM, on June 8 2011 @ 2:38 am

hello, what are the level privilege for Help Desk and Network Operator thanks

Comment RSS · TrackBack URI

© 2012 ItsyourIP.com
All Trademarks are the property of their respective owners.
DISCLAIMER: All the information, troubleshooting methods, utilities offered in this website is provided AS-IS, without any warranty. Though I strive for perfection, and always test the validity and effectiveness of the troubleshooting content, I assume no responsibility for your use of these Fixes, Utilities and other troubleshooting advice. The author will not be liable for any special, incidental, consequential or indirect damages due to loss of data or any other reason. All use is completely at your own risk.
Wordpress Theme by Triathlon Training

ItsyourIP.com - 38.107.179.227 is your ip Address

Allow user view Running/Startup-Config (red-only) in Cisco IOS

Related Posts

5 Comments so far »

Leave a comment

Your IP Address

Cisco Security Advisory

MS Security Bulletin

US-CERT Vulnerability

SANS

Secunia Advisories

Recent Posts

Login/Register

Categories

Archives

Links

Recent Comments