Goal :

- Create telnet access with user and passwd authentication.

- Set user privilege to only execute several commands for example ; show interface, show running-config, configure terminal, description (Interface level)

 

#username noc privilege 10 secret nosecret

 

#privilege interface level 10 description

#privilege configure level 10 interface

#privilege exec level 10 configure terminal

#privilege exec level 10 show running-config

#privilege exec level 10 show interfaces

 

This is the output when user entering interface level

IOU1(config-if)#?

Interface configuration commands:

  default      Set a command to its defaults

  description  Interface specific description

  exit         Exit from interface configuration mode

  help         Description of the interactive help system

  no           Negate a command or set its defaults

  ospfv3       OSPFv3 interface commands

 

Note : Even though users can execute show running-config, only interface and description that are actually display.

 

#sh run

Building configuration...

 

Current configuration : 548 bytes

!

! Last configuration change at 20:21:08 UTC Tue Oct 25 2016 by noc

!

boot-start-marker

boot-end-marker

!

!

!

!

!

interface Ethernet0/0

 description toIOU1

!

interface Ethernet0/1

!

interface Ethernet0/2