Jump to content


When would the privilege command be used under the vty lines?


  • Please log in to reply
1 reply to this topic

#1 hikingguy

hikingguy

    Newbie

  • Members
  • Pip
  • 15 posts

Posted 01 January 2015 - 05:50 AM

I'm needing some help understanding the configuration of privilege levels under the vty lines. 

 

When I log into the router with the following config, I am placed into priv level 1 (not 12, which is configured under the vty lines). From testing I've done, I know that if you don't specifically set the priv level of a user in the local database, it defaults to priv level 1.

 

From other testing I did (on real equipment), I've determined that the priv level associated with a username always overrides the priv level configured under the vty lines. So, my question is, when would the privilege level x command under the vty lines ever be used)??? 

 

no aaa new-model
username buck password 0 rogers
!
line vty 0 4
privilege level 12

 

Thanks,

 

Andy 


  • 0

#2 martinlo

martinlo

    V.I.P. Member

  • Global Moderators
  • PipPipPipPipPip
  • 2697 posts
  • Gender:Male
  • Location:Land Of 10,000 Lakes

Posted 04 January 2015 - 01:51 AM

did u set up level 12?  by default only 2 are set: User EXEC mode commands are privilege level 1.  Privileged EXEC mode and configuration mode commands are privilege level 15.

if u want use levels other than that, u must set them up:

i.e:

 

privilege configure all level 3 interface

privilege exec level 3 configure terminal

privilege exec level 3 configure

  • 0





0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users