Router(config)# aaa new-model
The root view is the view that the administrator would have. A typical administrator would level 15 command privileges, and indeed, that is a requirement to enable the root view. In following example, the administrator is logged in and is in enable mode, referenced by # symbol after the router name, and then enables the root view typing enable view.
Router# enable view
Password:
Router#
Now that view is enabled, you can configure additional views. In the following example, the command parser view is used to create a view called NOC, short for Network Operating Center, which is a pratical example. You might want all of your NOC personnel to only be able to perform certain tasks on your routers.
Router# conf t
Router(config)# parser view NOC
Router(config-view)#
Next you need to set a password for the view. You can configure either a type 0 or a type 5 password. If you use type 0, it means no encryption the configuration in the configuration and you can see the password in plain text. If you use a 5 in your configuration, the password will be encrypted. In this example, you will use a type 0 password:
Router(config-view)# secret 0 view-noc
Next you need to set the commands you want this particular view to be able to perform. In the following example, the ping and traceroute commands are extended to the view NOC:
Router(config-view)# commands exec include traceroute
Router(config-view)# commands exec include ping
Now that you are finished with the configuration, you can verify it by using the enable view command. Type a question mark to see what commands are available in this view:
Router> enable view NOC
Password:
Router# ?
Exec commands:
<1-99> Session number to resume
enable Turn on privileged commands
exit Exit from the EXEC
ping Send echo messages
traceroute Trace route to destination
See Also:
biOos
No comments:
Post a Comment