Subscribe
Allow user view Running/Startup-Config (red-only) in Cisco IOS
Posted on May 12, 2008 under Cisco | 2 CommentsTags:Cisco ios privilege read-only running-config startup-config
If you want to allow a low-priviledged user on a Cisco router or a Switch to view the Startup Config then this can be done in Routers and Switches running Cisco IOS.
This infact is a simple 2 step procedure as follows:
Set Privileges to view Startup Config
From the Global configuration mode, set the permissions for the privilege level 3. This should allow the users set with privilege level 3 to view the startup config.
ciscorouter(config)# privilege exec level 3 show startup-config
Create User with the privilege
ciscorouter(config)# username operations priv 3 password opsuser
The above creates a new local user named "operations" on the Cisco router with password "opsuser"
Set privileges to view Running-config
To make the user view the running configuration. It gets a bit more complex. Set the privilege as follows:
ciscorouter(config)# privilege exec all level 3 show running-config
This will set the permissions to view the running config but only when viewed as follows
ciscorouter# show running-config view full
On the other hand, all the show commands will be enabled for the user.
If you're new here, you may want to subscribe to my RSS feed. Thanks for visiting!
by student, on September 24 2008 @ 1:15 pm
hmm it seems commands are different for switches than routers… i can’t put in “privilege exec all level 3 show running-config” as there is no all any ideas?
by Ciscozine, on November 18 2008 @ 4:25 am
There are 16 different privilege levels that can be used. Level 0 is user mode. Level 15 is the privileged mode. Level 1 through 14 are available for customization and use.
http://www.ciscozine.com/2008/10/23/multiple-privilege-levels/