VyOS users privilege levels

Introduction: VyOS defines what users can do on a system by having two privilege levels: operator and admin. 

Operators may log into the system and run operational commands, but can not change system configuration. Thus, operators may view the status of the system and services, as well as make basic operational changes, such as bringing up and down network interfaces.

Admins, on the other hand, are able to change the system's configuration, in addition to having the same privileges as operators. The admin level also gives access to the sudo command, meaning admin level users have full root access to the system as well.

The privilege level is set as part of making a new user, but may be changed by any admin-level user in configuration mode with the following command:

set system login user <username> level <type> 

Note: This document was created for 1.2.x series and  the operator level option is no more available in 1.3.x series due to security concerns. Operator level users will be converted to admin users post upgrade to 1.3.x versions and  new users are created with administrator privilege by default.