32-18
Cisco ASA 5500 Series Configuration Guide using ASDM
OL-20339-01
Chapter 32 Configuring Management Access
Configuring AAA for System Administrators
Viewing Command Privilege Levels
The following commands when used in Tools > Command Line Interface let you view privilege levels
for commands.
Examples
For example, for the show running-config all privilege all command, the system displays the current
assignment of each CLI command to a privilege level. The following is sample output from the
command.
Enter the following command in the Tools > Command Line Interface tool:
show running-config all privilege all
privilege show level 15 command aaa
privilege clear level 15 command aaa
privilege configure level 15 command aaa
privilege show level 15 command aaa-server
privilege clear level 15 command aaa-server
privilege configure level 15 command aaa-server
privilege show level 15 command access-group
privilege clear level 15 command access-group
privilege configure level 15 command access-group
privilege show level 15 command access-list
privilege clear level 15 command access-list
privilege configure level 15 command access-list
privilege show level 15 command activation-key
privilege configure level 15 command activation-key
....
The following command displays the command assignments for privilege level 10:
show running-config privilege level 10
privilege show level 10 command aaa
The following command displays the command assignment for the access-list command:
show running-config privilege command access-list
privilege show level 15 command access-list
privilege clear level 15 command access-list
privilege configure level 15 command access-list
Configuring TACACS+ Command Authorization
If you enable TACACS+ command authorization, and a user enters a command at the CLI, the adaptive
security appliance sends the command and username to the TACACS+ server to determine if the
command is authorized.
Command Purpose
show running-config all privilege all
Shows all commands.
show running-config privilege level level
Shows commands for a specific level. The level is an integer between 0
and 15.
show running-config privilege command
command
Shows the level of a specific command.
To Next Page
Loading...
