Insight > Hardware

What's your Cisco IOS privilege?

Did you know that the Cisco IOS offers 16 privilege levels for access to different commands? Many network administrators who work with the Cisco IOS never bother to think about the level of privilege they're using or what that level means.

When it comes to the different privilege levels in the Cisco IOS, the higher your privilege level, the more router access you have. But most users of Cisco routers are familiar with only two privilege levels:

• User EXEC mode—privilege level 1
• Privileged EXEC mode—privilege level 15

When you log in to a Cisco router under the default configuration, you're in user EXEC mode (level 1). From this mode, you have access to some information about the router, such as the status of interfaces, and you can view routes in the routing table. However, you can't make any changes or view the running configuration file.

Because of these limitations, most Cisco router users immediately type enable to get out of user EXEC mode. By default, typing enable takes you to level 15, privileged EXEC mode. In the Cisco IOS, this level is equivalent to having root privileges in UNIX or administrator privileges in Windows. In other words, you have full access to the router.

For networks maintained by just a few people, everyone typically has the password to get to privileged mode. But at some point, those small and midsize companies may likely grow, and that's when privileges become more complicated.

Many times, it starts with having a support group or less senior administrator who needs less access to something on the router. Perhaps they need to connect to routers to view the running configuration or reset interfaces.

In such cases, the person would need some level of access between level 1 and level 15. Remember the principle of least privilege—only give access to what's necessary and no more.

Talkback 0 comments

TechGuides

Use shades of gray to enhance scale in Excel

Excel's palette is generous, but don't throw buckets of pigment all over your spreadsheets just because you can.

Read more »

Latest from Blog Central

Ultimate 2012 recovery site: the moon

Read more »

• Application Support Analyst C, MS SQL (prime Services)
• Java / Oracle Support Analyst Financial Services (s11)
• Bloomberg Etrading Support Analyst
• Application Support Analyst Eftpos / As2805 (s11)
• Application Support Analystintermediate

Search for your ideal tech job:

• AT&T
• Asustek
• Canon
• Convergys
• Ericsson
• Hewlett-Packard
• Infosys
• LogicaCMG
• NTT
• Samsung
• SingTel Group
• Toshiba
• Xerox

• Accenture
• Atos Origin
• Capgemini
• Dell
• France Telecom
• Hitachi
• Intel
• Microsoft
• Nokia
• Satyam Computer Services
• Sony
• Verizon Communications
• ZTE

• Alcatel-Lucent
• British Telecom
• China Mobile
• Deutsche Telekom
• Fujitsu
• Huawei Technologies
• LG Electronics
• Motorola
• Oracle
• Seagate Technology
• Sun Microsystems
• Western Digital
•  

• Apple
• CSC
• Cisco Systems
• EMC
• Google
• IBM
• Lenovo Group
• NEC
• SAP
• Siemens IT Solutions & Services
• Tata Consultancy Services
• Wipro
•  

ZDNet Asia's Top Tech Index will be next updated in 2010.

News |  Insight |  Reviews |  TechGuides |  Jobs |  Blogs |  Videos |  Community |  Downloads |  IT Library |