Name
privilege level (global) — global
Synopsis
privilegemodelevellevel commandno privilegemodelevellevel command
Configures
Privilege level information
Default
Level 1 consists of all user EXEC commands; Level 15 consists of all enable commands
Description
The privilege level commands allow you to control access to a set of commands. The first of these commands, where you supply a mode and a command name, is used to set up a privilege level: a group of commands protected by a password. This is a global command—it is used outside of any context. Passwords for privilege levels are defined with the enable password command.
-
mode The configuration mode to which the command belongs.
execis most common;configuration,controller,hub,interface,ipx-router,line,map-class,map-list,route-map, androuterare also used.-
level A number from 0 to 15 indicating the level to which you’re assigning the command. Each level is a superset of the previous levels; for example, level 13 automatically includes all the commands for levels 0 through 12.
-
command The command that you are assigning to a level.
Example
The first command in the following configuration assigns the clear command to privilege level 14. The password guessme is assigned to privilege level 14, requiring users to give this password before they can execute any of the clear commands. Since the other enable commands are assigned to level 15, users who know this password are not necessarily allowed to make general changes to the router’s ...
Get Cisco IOS in a Nutshell, 2nd Edition now with the O’Reilly learning platform.
O’Reilly members experience books, live events, courses curated by job role, and more from O’Reilly and nearly 200 top publishers.
