• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 574
  • Last Modified:

Cisco router user limited configuration access level

Hello Experts,

I have a Cisco Router and I would like to limit a user access to the following:
1. Can not read or view the entire cisco router configuration
2. Can not add, change modify the configuration
3. I would like to only allow ping access to different network resources for troubleshooting

Any ideas are greatly apprecialted.
0
RandallVillalobos
Asked:
RandallVillalobos
  • 4
  • 3
1 Solution
 
abhishek1986Commented:
If you want users not to be able to access switch via telnet, you can simply not tell them the password for the switch. Pinging is allowed by default and so you need not do anything for that.
If you have something else in mind, please be more specific as to your requirements and there are various features and privilege and roles that can be set for users, there are options to use AAA servers, Radius Servers as well for role definition and setup.
0
 
RandallVillalobosAuthor Commented:
Hello,

I would like to create a restricted local database user authentication (not AAA).
I remember a long time a ago, I was given a router username where I could only run certain features.

Not giving the enable password will not work (just tried it) because I can not run extended pings.

Thank you
0
 
RandallVillalobosAuthor Commented:
Any ideas?
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
abhishek1986Commented:
Do you want other users to log in to the switch or not?
0
 
RandallVillalobosAuthor Commented:
Hi abhishek1986,

Yes, I would like for them to log in the router with local authentication.  Thanks for the help.
0
 
abhishek1986Commented:
There are ways regarding that:

Cisco routers have options to configure and customize 14 levels of privileged access.

http://www.cisco.com/en/US/docs/ios/12_2t/12_2t13/feature/guide/ftprienh.html
0
 
RandallVillalobosAuthor Commented:
thanks
0

Featured Post

The new generation of project management tools

With monday.com’s project management tool, you can see what everyone on your team is working in a single glance. Its intuitive dashboards are customizable, so you can create systems that work for you.

  • 4
  • 3
Tackle projects and never again get stuck behind a technical roadblock.
Join Now