|
admin
|
Can view user account information in configuration mode and
with the show configuration command.
|
|
admin-control
|
Can view user accounts and configure them (at the [edit
system login] hierarchy level).
|
|
access
|
Can view the access configuration in configuration mode and
with the show configuration operational mode command.
|
|
access-control
|
Can view and configure access information (at the [edit
access] hierarchy level).
|
|
all
|
Has all permissions.
|
|
clear
|
Can clear (delete) information learned from the network that
is stored in various network databases (using the clear commands).
|
|
configure
|
Can enter configuration mode (using the configure command)
and commit configurations (using the commit command).
|
|
control
|
Can perform all control-level operations (all operations configured
with the -control permission bits).
|
|
field
|
Reserved for field (debugging) support.
|
|
firewall
|
Can view the firewall filter configuration in configuration
mode.
|
|
firewall-control
|
Can view and configure firewall filter information (at the [edit firewall] hierarchy level).
|
|
floppy
|
Can read from and write to the removable media.
|
|
interface
|
Can view the interface configuration in configuration mode and
with the show configuration operational mode command.
|
|
interface-control
|
Can view chassis, class of service, groups, forwarding options,
and interfaces configuration information. Can configure chassis, class
of service, groups, forwarding options, and interfaces (at the [edit] hierarchy).
|
|
maintenance
|
Can perform system maintenance, including starting a local shell
on the device and becoming the superuser in the shell (by issuing
the su root command), and can halt and reboot the device
(using the request system commands).
|
|
network
|
Can access the network by entering the ping, ssh, telnet, and traceroute commands.
|
|
reset
|
Can restart software processes using the restart command
and can configure whether software processes are enabled or disabled
(at the [edit system processes] hierarchy level).
|
|
rollback
|
Can use the rollback command to return to a previously
committed configuration other than the most recently committed one.
|
|
routing
|
Can view general routing, routing protocol, and routing policy
configuration information in configuration and operational modes.
|
|
routing-control
|
Can view general routing, routing protocol, and routing policy
configuration information and configure general routing (at the [edit routing-options] hierarchy level), routing protocols (at
the [edit protocols] hierarchy level), and routing policy
(at the [edit policy-options] hierarchy level).
|
|
secret
|
Can view passwords and other authentication keys in the configuration.
|
|
secret-control
|
Can view passwords and other authentication keys in the configuration
and can modify them in configuration mode.
|
|
security
|
Can view security configuration in configuration mode and with
the show configuration operational mode command.
|
|
security-control
|
Can view and configure security information (at the [edit
security] hierarchy level).
|
|
shell
|
Can start a local shell on the device by entering the start
shell command.
|
|
snmp
|
Can view SNMP configuration information in configuration and
operational modes.
|
|
snmp-control
|
Can view SNMP configuration information and configure SNMP (at
the [edit snmp] hierarchy level).
|
|
system
|
Can view system-level information in configuration and operational
modes.
|
|
system-control
|
Can view system-level configuration information and configure
it (at the [edit system] hierarchy level).
|
|
trace
|
Can view trace file settings in configuration and operational
modes.
|
|
trace-control
|
Can view trace file settings and configure trace file properties.
|
|
view
|
Can use various commands to display current systemwide, routing
table, and protocol-specific values and statistics.
|