Cisco CISCO1401 Software Guide - Page 58
Configuring Multiple Privilege Levels, Setting the Privilege Level for a Command
![]() |
UPC - 746320202785
View all Cisco CISCO1401 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 58 highlights
Protecting Access to Privileged EXEC Commands Chapter 5 Administering the Bridge To disable username authentication for a specific user, use the no username name global configuration command. To disable password checking and allow connections without a password, use the no login line configuration command. Note You must have at least one username configured and you must have login local set to open a Telnet session to the bridge. If you enter no username for the only username, you can be locked out of the bridge. Configuring Multiple Privilege Levels By default, the IOS software has two modes of password security: user EXEC and privileged EXEC. You can configure up to 16 hierarchical levels of commands for each mode. By configuring multiple passwords, you can allow different sets of users to have access to specified commands. For example, if you want many users to have access to the clear line command, you can assign it level 2 security and distribute the level 2 password fairly widely. But if you want more restricted access to the configure command, you can assign it level 3 security and distribute that password to a more restricted group of users. This section includes this configuration information: • Setting the Privilege Level for a Command, page 5-6 • Logging Into and Exiting a Privilege Level, page 5-7 Setting the Privilege Level for a Command Beginning in privileged EXEC mode, follow these steps to set the privilege level for a command mode: Step 1 Step 2 Step 3 Command configure terminal privilege mode level level command enable password level level password Purpose Enter global configuration mode. Set the privilege level for a command. • For mode, enter configure for global configuration mode, exec for EXEC mode, interface for interface configuration mode, or line for line configuration mode. • For level, the range is from 0 to 15. Level 1 is for normal user EXEC mode privileges. Level 15 is the level of access permitted by the enable password. • For command, specify the command to which you want to restrict access. Specify the enable password for the privilege level. • For level, the range is from 0 to 15. Level 1 is for normal user EXEC mode privileges. • For password, specify a string from 1 to 25 alphanumeric characters. The string cannot start with a number, is case sensitive, and allows spaces but ignores leading spaces. By default, no password is defined. Cisco Aironet 1400 Series Wireless Bridges Software Configuration Guide 5-6 OL-4059-01
![](/manual_guide/products/cisco-cisco1401-software-guide-337473e/58.png)