Could anyone give me a help on setup an access for read-only user?
I have ASA5520 with multi-contents and tried to configure a read-only user, who can use ASDM to monitor the box, check out all the contents rules/performance, but can not do configuration.
However, it is not successful. the problem is:
1. The user can only see one content, can not see the rest
2. The user can use configure butter.
what I did is:
username userRW password xxxx encrypted privilege 15
username readonlyuser password yyyy encrypted privilege 5
aaa authentication ssh console LOCAL
aaa authentication http console LOCAL
aaa authorization command LOCAL
And these commands are configured on the content who has management interface. Other contents, who have no management interface, have not been configured username and aaa.
1. Above configuration is enough to service the purpose?
2. So I have to configure username/aaa on all the contents?
Any comments will be appreciated
Thanks in advance