cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1053
Views
0
Helpful
1
Replies

How to create ASA ASDM read only account?

chrisserafin
Level 1
Level 1

I tried creating a privilege 0 account for a client for read-only access to their ASA firewalls. For the CLI login, it won't matter cause they don't know the enable password, so that keeps them from making changes. But for the ASDM login, I was able to login with the privilege 0 account and make changes to the device (adding users).

I searched cisco.com and of course I found nothing good.

Should I create some 'privilege level 0' commands? I looked at that command and I didn't see anything to specify ASDM read only.

Any comments appreciated ,

Chris Serafin

Security Engineer

chris@chrisserafin.com

1 Reply 1

johnd2310
Level 8
Level 8

Hi,

You will have to configure authorization. Have a look at the following:

http://www.cisco.com/en/US/products/ps6121/products_user_guide_chapter09186a0080810292.html#wp1286376

Thanks

John

**Please rate posts you find helpful**
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: