Jason, I'll take a stab at this one...
Configure your vty lines to 'login local'. Create a user of any name and password. Create enable level and permitted command for certain commands and a password for level 15. You can also use AAA with Radius or Tacacs+ in order to centrally control these settings, but I'd guess you are looking for something more simple? #Router(config)# username user password cisco #Router(config)# privlege exec level 3 show ip route #Router(config)# privlege exec level 3 show ip interface #Router(config)# privlege exec level 3 show ip ospf neighbors #Router(config)# enable secret level 3 cisco3 #Router(config)# enable secret level 15 cisco15 #Router(config)# line vty 0 5 #Router(config)# login local When you telnet to the router you will get a login prompt and password. It's looking for user and cisco confgiured above. That user will already be at the user level 1. $ Telnet router Username: user Password: cisco Router> enable 3 ! gets you the additional commands defined for level 3 Password: cisco3 Router# enable 15 ! opens level 15 Password: cisco15 Router# You don't have to go to level 3 first, you can go directly to 15 provided you have the password. Richard Burdette ""Jason Steig"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I'am working on a Boson's CCIE lab with a friend and we are working on > setting up privilege levels for users who need to telnet to the router. > > User1 needs to have access to just the user level commands nothing more. > > User2 needs access to all the commands that user 1 has access to as well as > about 5 different exec commands. lets say "show ip interface" "show ip ospf > neighbors" "show ip route" and "show version" i think most of those are > exec commands. > > User3 needs access to every commands. This is privilege level 15 right? > > > How would you implement these? Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=63079&t=63073 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
