Cisco user Priviliges

Posted on 2014-12-30
Last Modified: 2015-01-09
If I understand in cisco devices, if you give someone privilege 15, they can do whatever they want on the device.
So, let 's say there is a junior Admin, that needs just :
- to view the configuration , no modification at all, should the Senior Admin give them Privilege 0 (Zero) ?
- if Senior Admin needs to give specific command permissions to Junior Admin, how can this be done?

Any help will be very much appreciated.

Question by:jskfan
LVL 12

Assisted Solution

by:Chris Staunton
Chris Staunton earned 134 total points
ID: 40524294
privilege level 1 should give a junior admin enough rights to see routing tables and such, just no rights to change anything.

Author Comment

ID: 40524298
what about:
- if Senior Admin needs to give specific command permissions to Junior Admin, how can this be done?
LVL 12

Assisted Solution

by:Chris Staunton
Chris Staunton earned 134 total points
ID: 40524322
Here's the Cisco docs for different priv levels.
Cisco Link
VMware Disaster Recovery and Data Protection

In this expert guide, you’ll learn about the components of a Modern Data Center. You will use cases for the value-added capabilities of Veeam®, including combining backup and replication for VMware disaster recovery and using replication for data center migration.

LVL 50

Accepted Solution

Don Johnston earned 300 total points
ID: 40524753
Level 1 is user level.  Level 15 is privileged level.  Everything in between is undefined.  Until you define it.

So if you have a junior admin that needs more than user mode commands, you would define one of the levels in between 1-15 (for example, 5) and specify which commands that person would need.  

If you have a more senior admin, you would define a higher level (6) and specify which additional commands that level would get.
LVL 18

Assisted Solution

Akinsd earned 66 total points
ID: 40524799
Switch(config)#username USER privilege 1 password PASSWORD

Use the "?" to view your options

Switch(config)#username USER privilege ?
  <0-15>  User privilege level

Switch(config)#username USER privilege 1 ?
  password  Specify the password for the user
  secret    Specify the secret for the user

Author Closing Comment

ID: 40541586
Thank you Guys!

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
SolarWinds reporting 2 25
Cisco Prime 2.2 7 35
Sonicpoint wifi and guest vland  on 1 cisco switch 5 25
cisco asa proxy arp 2 15
In the hope of saving someone else's sanity... About a year ago we bought a Cisco 1921 router with two ADSL/VDSL EHWIC cards to load balance local network traffic over the two broadband lines we have, but we couldn't get the routing to work consi…
Use of TCL script on Cisco devices:  - create file and merge it with running configuration to apply configuration changes
After creating this article (, I decided to make a video (no audio) to show you how to configure the routers and run some trace routes and pings between the 7 sites…
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question