Minimal user permission to ftp and download config

[Muttley]

Hi all and thaks you very much for the support.

Is possible create a user (local) enabled only to have ftp acces to the switch and download the boot.config ?
A user with the minimun permission to download file via ftp but not an Admin or read-write all user.

This because I have a script to FTP the remote switch and download the boot.config
I don't want to use a user with read-write all.
I have tested with a user enabled read-only all but read-only all can't download via FTP...
The aaa authentication ftp is set to "local"

Thanks you very much.

[silvio]

Hi,
never tested it. But in the SW-Guide there are some explanations how to configure Privileges for a User.
F.e. you can try with "read-write domain-admin" instead of "all". Or with read-write all-except .....
Maybe there you will find a solution.
It will be also interesting for us.
regards
Silvio

[Muttley]

Hi Silvio
Thank you for your support as usual.
I have read the guide before posting; but I don't have find a solution.
By now I'm using a workaround :
SSH and Telnet connection are grant by radius-server
FTP by "local".
So you can't use the FTP-User (local-admin) to login by ssh or telnet
But it's only a workaround...(if the radius server are down you can login the switch with the FTP-User local admin)...
The solution may be in the user FTP-User read-write all-except .......
Thanks you anyway!

[silvio]

Hi,
it is possible for you to open a ticket at Alcatel? I think there have to be a solution without your workaround.
regards
Silvio