jskfan
asked on
Cisco Privilege Levels
Per Cisco , there are 3 privileges:
•privilege level 0 — Includes the disable, enable, exit, help, and logout commands.
•privilege level 1 — Normal level on Telnet; includes all user-level commands at the router> prompt.
•privilege level 15 — Includes all enable-level commands at the router# prompt
However it is not clear what each level can do on Cisco device. I believe level 15 can do anything on the device. Correct me if I am wrong.
but Level 0 and Level 1, it is not clear what they can do ...
Thank you
•privilege level 0 — Includes the disable, enable, exit, help, and logout commands.
•privilege level 1 — Normal level on Telnet; includes all user-level commands at the router> prompt.
•privilege level 15 — Includes all enable-level commands at the router# prompt
However it is not clear what each level can do on Cisco device. I believe level 15 can do anything on the device. Correct me if I am wrong.
but Level 0 and Level 1, it is not clear what they can do ...
Thank you
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
In Microsoft , if you give a user Account Operator or Backup Operator, or Domain Admins, each can do separate tasks, and sometimes there is an overlap....
in Cisco you can give specific commands to a specific Level.
For Instance if you hire a Junior Network administrator, and you want him to view configuration to Ping the network, but cannot make any changes or reload the Device, what Level would you give them.??
If you want to give a user Level 15 on Switches but not on routers, would you go to each Router and Switch and assign privileges, or there is a central console where you can do that ?
Thanks
in Cisco you can give specific commands to a specific Level.
For Instance if you hire a Junior Network administrator, and you want him to view configuration to Ping the network, but cannot make any changes or reload the Device, what Level would you give them.??
If you want to give a user Level 15 on Switches but not on routers, would you go to each Router and Switch and assign privileges, or there is a central console where you can do that ?
Thanks
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
So if I need to give someone permissions just to view the configuration , to PING , then Level 1 will be the right choice ? or is it too much ?
I am assuming Level 1, they cannot do any modification or reload the device..
I am assuming Level 1, they cannot do any modification or reload the device..
SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
I will look at this later..
Thank you
Thank you
ASKER
If any Expert that understands well Privileges, they can just summarize it here.
For Instance:
Level 0: can do this and that but cannot do this and that ...etc...
etc...
...
....