I've found the documented privilege levels (0 - Super User, 4 - Port Config, 5 - Read Only) to be too restrictive in our environment. More granularity between levels 4 and 5 would be nice. For example, Port + VLAN configuration.
Just wondering if there were any undocumented or insider tricks?
I'm using TACACS+ and local but could just as easily adopt Radius.