Cisco Cisco Packet Data Gateway (PDG)
System Settings
▀ Configuring System Administrative Users
▄ ASR 5000 System Administration Guide, StarOS Release 18
62
Configuring System Administrative Users
Getting Started describes how to configure a context-level security administrator for the system.
This section provides instructions for configuring additional administrative users having the following privileges:
Security Administrators: have read-write privileges and can execute all CLI commands, including those
available to Administrators, Operators, and Inspectors
Administrators: have read-write privileges and can execute any command in the CLI except for a few security-
related commands that can only be configured by Security Administrators. Administrators can configure or
modify system settings and execute all system commands, including those available to the Operators and
Inspectors.
modify system settings and execute all system commands, including those available to the Operators and
Inspectors.
Operators: have read-only privileges to a larger subset of the Exec Mode commands. They can execute all
commands that are part of the inspector mode, plus some system monitoring, statistic, and fault management
functions. Operators do not have the ability to enter the Config Mode.
functions. Operators do not have the ability to enter the Config Mode.
Inspectors: are limited to a few read-only Exec Mode commands. The bulk of these are show commands for
viewing a variety of statistics and conditions. An Inspector cannot execute show configuration commands and
does not have the privilege to enter the Config Mode.
does not have the privilege to enter the Config Mode.
Configuration instructions are categorized according to the type of administrative user: context-level or local-user.
Important:
For information on the differences between these user privileges and types, refer to Getting Started.
If your deployment does not require the configuration of additional administrative users, proceed to the Configuring
Packet Processing and Line Card Availability section.
Packet Processing and Line Card Availability section.
Configuring Context-level Administrative Users
This section contains information and instructions for configuring context-level administrative user types.
Configuring Context-level Security Administrators
Use the example below to configure additional security administrators:
configure
context local
administrator user_name { [ encrypted ] [ nopassword ] password password }
end
Notes:
Additional keyword options are available that identify active administrators or place time thresholds on the
administrator. Refer to the Command Line Interface Reference for more information about the administrator
command.
command.