<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
<html>
<head>
<meta content="text/html;charset=ISO-8859-1" http-equiv="Content-Type">
</head>
<body bgcolor="#ffffff" text="#000000">
With limited priv you can't run "show running-config" command. You have
to run "show config" provided its permitted command in your limited
access setup. To setup limited priv properly, you need something like
below.<br>
<br>
privilege show level 1 mode exec command configuration
<== This is ASA command so you will have to figure out equivalent
on PIX<br>
<br>
Sam<br>
<blockquote
cite="mid:D741737AA1095A45A71B22A4A1318AFC107EC68B@euclid.bc.corp"
type="cite">
<meta http-equiv="Content-Type" content="text/html; ">
<meta name="Generator"
content="MS Exchange Server version 6.5.7651.59">
<title>RE: Probelms gettin PIX 501 Version 6.3(5) configuration</title>
<!--ppd1000035-->
<!-- Converted from text/rtf format -->
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"><font
face="Arial" size="2">Hi everyone,</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">I am
having trouble trying to get the configuration of a PIX 501 Version
6.3(5). I am using an enable user with limited privileges to access the
firewall. This only happens when I use the user with limited privileges
on the firewall. If I use enable level 15 I can get the config and
check it out in SVN. Does anybody know what permissions are needed to
allow a user to pull the running config info? Below are the logs when I
run rancid-run</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">Thanks in
advance,</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">Alex.</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2"> </font></span></p>
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"><font
face="Arial" size="2">Trying to get all of the configs.</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">pa-fw-501:
End of run not found</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">: end</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">la-fw-501
clogin error: Error: TIMEOUT reached</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">la-fw-501:
missed cmd(s): admin show diag,dir /all slavedisk2:,show rsp
chassis-info,dir /all sec-slot2:,show diag,dir /all disk1:,show gsr
chassis,dir /all sec-nvram:,show diag chassis-info,dir /all disk2:,dir
/all sec-bootflash:,show spe version,dir /all slaveslot2:,dir /all
disk0:,show install active,show bootvar,dir /all slaveslot0:,dir /all
sec-slot1:,dir /all harddiska:,dir /all slavenvram:,show flash,dir /all
sec-disk2:,dir /all slavesup-bootflash:,dir /all sec-disk0:,dir /all
harddiskb:,show variables boot,show boot,show inventory raw,dir /all
slavedisk1:,show env all,show module,admin show env all,show
controllers,admin show version,show diagbus,dir /all slavedisk0:,show
debug,show idprom backplane,dir /all bootflash:,dir /all sec-slot0:,dir
/all sec-disk1:,write term,show vtp status,dir /all sup-bootflash:,dir
/all slot2:,dir /all harddisk:,dir /all slot0:,dir /all
sup-microcode:,show vlan,dir /all slavebootflash:,show controllers
cbus,dir /all slaveslot1:,dir /all nvram:,show version,show
vlan-switch,admin show variables boot,show redundancy secondary,show
running-config,show c7200,dir /all slot1:</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">la-fw-501:
End of run not found</font></span></p>
<p dir="ltr"><span lang="en-us"><font face="Arial" size="2">!</font></span></p>
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"></span></p>
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span><span lang="en-us"><font
color="#333333" face="Arial" size="2">--------------------------------------------------------------------------</font></span></p>
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><b><span lang="en-us"><font color="#333333"
face="Arial" size="2">Alejandro A. Malberty</font></span></b><span
lang="en-us"></span><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span></p>
<p dir="ltr"><span lang="en-us"><font color="#333333" face="Arial"
size="2">Systems Administrator</font></span></p>
<p dir="ltr"><span lang="en-us"><font color="#333333" face="Arial"
size="2">Engineering</font></span></p>
<p dir="ltr"><span lang="en-us"><font color="#333333" face="Arial"
size="2">BabyCenter, LLC</font></span></p>
<p dir="ltr"><span lang="en-us"><font color="#333333" face="Arial"
size="2"><a class="moz-txt-link-abbreviated" href="mailto:amalberty@babycenter.com">amalberty@babycenter.com</a></font></span></p>
<p dir="ltr"><span lang="en-us"><font color="#333333" face="Arial"
size="2">p: 415.344.7626</font></span></p>
<p dir="ltr"><span lang="en-us"></span><a moz-do-not-send="true"
href="http://www.babycenter.com"><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span></a><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span></p>
<br>
<p dir="ltr"><span lang="en-us"></span><a moz-do-not-send="true"
href="http://www.babycenter.com"><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span><u><span lang="en-us"><font
color="#0000ff" face="Arial" size="2">http://www.babycenter.com</font></span></u><span
lang="en-us"></span></a><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span></p>
<p dir="ltr"><span lang="en-us"></span><span lang="en-us"></span><span
lang="en-us"></span><span lang="en-us"></span></p>
<p dir="ltr"><span lang="en-us"></span></p>
<br>
<br>
<i>
<p><font face="Arial" size="2">This email message is for the sole use
of the intended recipient(s) and may contain confidential and
privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient,
please contact the sender by reply email and destroy all copies of the
original message. If you are the intended recipient, please be advised
that the content of this message is subject to access, review and
disclosure by the sender's Email System Administrator.</font></p>
</i>
<pre wrap="">
<hr size="4" width="90%">
_______________________________________________
Rancid-discuss mailing list
<a class="moz-txt-link-abbreviated" href="mailto:Rancid-discuss@shrubbery.net">Rancid-discuss@shrubbery.net</a>
<a class="moz-txt-link-freetext" href="http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss">http://www.shrubbery.net/mailman/listinfo.cgi/rancid-discuss</a></pre>
</blockquote>
<br>
</body>
</html>