Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

deny-commands

 

Syntax

Hierarchy Level

Release Information

Statement introduced before Junos OS Release 7.4.

Statement introduced in Junos OS Release 9.0 for EX Series switches.

Description

Specify the operational mode commands that the user is denied permission to issue even though the permissions set with the permissions statement would allow it.

When specifying extended regular expressions using the allow/deny-commands and allow/deny-configuration statements, each expression separated by a pipe (|) symbol must be a complete standalone expression, and must be enclosed in parentheses ( ). Do not use spaces between regular expressions separated with parentheses and connected with the pipe (|) symbol.

Default

If you omit this statement and the allow-commands statement, users can issue only those commands for which they have access privileges through the permissions statement.

Options

regular-expression—Extended (modern) regular expression as defined in POSIX 1003.2. If the regular expression contains any spaces, operators, or wildcard characters, enclose it in quotation marks.

Required Privilege Level

admin—To view this statement in the configuration.

admin-control—To add this statement to the configuration.