Home Knowledge Base CCIE Security Pursuit CCIE Security - Cisco IOS Role-Based Access Control

CCIE Security - Cisco IOS Role-Based Access Control

Cisco IOS gives an ability to create "views", users are restricted to command specifies in their view.

view UserA
  show interface
  secret cisco
 view UserB
  configure ip http
  configure ip
  configure terminal
  secret cisco
 view UserC
  view UserA
  view UserC
  secret cisco

There is also a "root" or superuser mode, called "view root".

username SUPERUSER privilege 10 view root
 enable view root

Using this concept you can limit users with accounts on your IOS device, say VPN users (in some cases you have local users defined for RA).

view VpnUser
  show clock
 username VPNUSER privilege 0 view VpnUser

Links:

Cisco IOS Role-Based Access Control with SDM

Easy Role-based Access on Cisco Routers

Search

Moving your apps to Amazon or Miscrosoft Clouds?

We can help you analyze your existing infrastructure, identify the cost savings we can achieve by migrating to a cloud provider. We can then execute end-to-end migration plan of your infrastructure and bringing down your TCO.

Cloud Computing

Ready for IPv6 Migration?

The Internet is running out of the equivalent of phone numbers - familiar problem, non-trivial solution.

The world has to move to IPv6, with its 128-bit addresses. But that's easier said than done.

IPv6 Migration

Are you fluent in "Linux"?

Learn Linux from a leading expert and quickly master you Linux skills.

Learn how to simplify your workflow and increase your productivity using tips and techniques of the pros.

Ideal training for Corporate IT Beginners and Advanced IT Admins alike.

Corporate Linux Training

Who's Online

We have 4 guests and no members online