[c-nsp] How to easily and securely pull configuration from a PIX/ASA
Marc Haber
mh+cisco-nsp at zugschlus.de
Fri Dec 7 04:50:38 EST 2007
On Thu, Dec 06, 2007 at 09:03:39PM +0000, Thorsten Dahm wrote:
> Marc Haber wrote:
> > Which access privileges would RANCID need, and how far can the RANCID
> > account be restricted?
>
> The same as any user who is able to to a "sh run".
Which access privileges are needed to do a "sh run"?
> > The administrators of the boxes are not very
> > keen on handing out unrestricted privilege 15 accounts to automated
> > processes.
>
> They may can restrict the user to the "sh run" command only.
Is it possible to authenticate through a ssh key, and is it possible
to restrict a key to be only accepted from one single IP address?
Greetings
Marc
--
-----------------------------------------------------------------------------
Marc Haber | "I don't trust Computers. They | Mailadresse im Header
Mannheim, Germany | lose things." Winona Ryder | Fon: *49 621 72739834
Nordisch by Nature | How to make an American Quilt | Fax: *49 3221 2323190
More information about the cisco-nsp
mailing list