Access for Read-Only Users
To give read-only access to a monitor user to a certain set of ports/maps, add the system built-in role, monitor, together with another role that has port/maps assigned.
For example, with the admin user, create a new role called NetOpsRole with read/write access to ten maps. Create a monitor user with a username of NetmonUser. Assign both roles of monitor and NetOpsRole to username NetmonUser. This will give NetmonUser read-only access to the ten maps.
For example, the following username commands create a new admin user and a new monitor user:
|
Command |
Comments |
|
(config) # username psandoval password Nine9.Eight8! (config) # username psandoval roles add admin |
Creates a new account named psandoval with a password and grants it admin privileges. |
|
(config) # username bcrawford password Seven7.Six6! |
Creates a new account named bcrawford with a password. New users are automatically created with default operator level privileges, so there is no need to grant an additional role. |
|
(config) # username aaron password Five5.Four4! (config) # username aaron roles add monitor |
Creates a new account named aaron with a password and grants it monitor privileges. |
Once you have configured user accounts, use the show usernames command to review your settings. The following figure shows the output after a few users have been added.
Note: If the logged in user has a monitor role, the account status of other users will not be displayed in the output of the show usernames command as shown in the following figure.
