I want to create users for monitoring with only read access to Networks, Alarms & Events section.
And if it possible, only to execute restricted commands, like show commands o create (not delete) vlans (for example).
Once the user is created under OS, I think that I have to create a new Authorization Groups with these rights and link user to that, but the problem is that a customized group has a lot of capabilities for select, and I don´t know what is the minimun to achive at least the first requirement.
What are the minimun capabilities to slect in order to have RO user in all section or at lest in Networks and Alarms & Events?
Is there any way to achieve the second rights?
Thanks in advance!!