Creation of Cisco IOS user ID with restricted command access

Posted on 2011-10-23
Last Modified: 2012-05-12
I would like to create a new user for a Cisco 1142 AP with restricted command access.

The user should only be able to edit access-list 700, and not have access to any other

Could anyone please help me with the config I need to create this new user?

Thanks in advance.
Question by:Suncore
    LVL 18

    Accepted Solution

    What you're asking for is command authorization.  Basically you create a user ID with a "level" attached to it.  Default privilege levels are 0, 1 and 15, but you can define anything in between.  Level 0 is extremely limited, Level 1 a little more , and level 15 is full authorization.  You enable the desired configuration commands for that particular level, and when the user is authorized at that level, he's able to execute those commands but not others.   My recollection is command authorization in IOS is not local, and it requires a back-end TACACS server for specifying the type of commands and the commands themselves.  I don't recall seeing a clear, concise example on CCO, and while I suspect it probably works on wireless platforms, I'm not positive about that.  I'll see if I have anything in my archives as an example.
    LVL 2

    Assisted Solution

    you can use parser view, you create a user and assign it to a group with specific rights.
    LVL 2

    Author Closing Comment

    Thankyou, just the information and commands I was looking for.

    Featured Post

    Looking for New Ways to Advertise?

    Engage with tech pros in our community with native advertising, as a Vendor Expert, and more.

    Join & Write a Comment

    Suggested Solutions

    Cybersecurity has become the buzzword of recent years and years to come. The inventions of cloud infrastructure and the Internet of Things has made us question our online safety. Let us explore how cloud- enabled cybersecurity can help us with our b…
    PRTG Network Monitor lets you monitor your bandwidth usage, so you know who is using up your bandwidth, and what they're using it for.
    Here's a very brief overview of the methods PRTG Network Monitor ( offers for monitoring bandwidth, to help you decide which methods you´d like to investigate in more detail.  The methods are covered in more detail in o…
    This video gives you a great overview about bandwidth monitoring with SNMP and WMI with our network monitoring solution PRTG Network Monitor ( If you're looking for how to monitor bandwidth using netflow or packet s…

    746 members asked questions and received personalized solutions in the past 7 days.

    Join the community of 500,000 technology professionals and ask your questions.

    Join & Ask a Question

    Need Help in Real-Time?

    Connect with top rated Experts

    16 Experts available now in Live!

    Get 1:1 Help Now