When configuring role-based CLI on a Cisco router, which step is performed first?
A.
Log in to the router as the root user.
B.
Create a parser view called “root view.”
C.
Enable role-based CLI globally on the router using the privileged EXEC mode Cisco IOS command.
D.
Enable the root view on the router.
E.
Enable AAA authentication and authorization using the local database.
F.
Create a root local user in the local database.
Explanation:
http://www.cisco.com/en/US/docs/ios/12_3t/12_3t7/feature/guide/gtclivws.html
Role-Based CLI Access
The Role-Based CLI Access feature allows the network administrator to define “views,” which are a
set of operational commands and configuration capabilities that provide selective or partial access to
Cisco IOS EXEC and configuration (Config) mode commands. Views restrict user access to Cisco IOS
command-line interface (CLI) and configuration information; that is, a view can define what
commands are accepted and what configuration information is visible. Thus, network administrators
can exercise better control over access to Cisco networking devices.
Configuring a CLI View
Prerequisites
Before you create a view, you must perform the following tasks:
•Enable AAA via the aaa new-model command. (For more information on enabling AAA, see the
chapter
“Configuring Authentication” in the Cisco IOS Security Configuration Guide, Release 12.3.
•Ensure that your system is in root view—not privilege level 15.
SUMMARY STEPS
1. enable view
2. configure terminal
3. parser view view-name
4. secret 5 encrypted-password
5. commands parser-mode {include | include-exclusive | exclude} [all] [interface interface-name |
command]
6. exit
7. exit
8. enable [privilege-level] [view view-name]
9. show parser view [all]
DETAILED STEPS
Step 1
Enable view
Router> enable view
Enables root view.