Hi All,
I am having trouble understanding the following config. I was of the understanding that you could only see the portion of the config that you have explicitly allowed under the privilege command when you issue "show run" under the relevant privilege level. For example, I have configured
"privilege configure level 3 class-map"
and not
"privilege configure all level 3 class-map".
I can see all of the sub configuration of the class-map when I issue "show run" in privilege level 3. I expected to only see the class-map names themselves? I thought the all keyword gave you access to the sub commands but also added them to the show run.
Or put another way, I thought if you cant configure it, you dont see it in the show run.
My assumption is wrong but I cant find a good doc on how this all ties together.
!
enable secret level 3 CISCO
!
class-map match-all BANABA
match access-group 101
class-map match-all hshdshdsh
match access-group 23
Rack1R6#disable
Rack1R6>en 3
Password: CISCO
Rack1R6#sh run
Building configuration...
Current configuration : 241 bytes
!
boot-start-marker
boot-end-marker
!
!
!
!
!
!
class-map match-all BANABA
match access-group 101
class-map match-all hshdshdsh
match access-group 23
!
!
!
!
end
Rack1R6#