PIX Login issue

Unanswered Question
Oct 10th, 2009
User Badges:

Hello Champs,


I am using PIX-506E version 6.3(5)


In order to do a scheduled config download, my script is hard coded to login

with a user name and password and execute the show running command. However, since i have enable password configured, I am unable to exectue the show running from the user mode.


My question is I can create a different username & password, but the criteria is that it should go to the priviledge mode directly. Since my script is hard coded, i am unable to modify it. Below is the AAA commands for your reference. Any help is highly appreciated. Thanks in advance


aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ max-failed-attempts 3

aaa-server TACACS+ deadtime 10

aaa-server RADIUS protocol radius

aaa-server RADIUS max-failed-attempts 3

aaa-server RADIUS deadtime 10

aaa-server LOCAL protocol local

aaa authentication ssh console LOCAL

aaa authorization command LOCAL


Regards,

Manoj


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jatin Katyal Tue, 10/13/2009 - 04:18
User Badges:
  • Cisco Employee,

Hi Manoj,


ASA/PIX/FWSM does not support AAA Exec

Authorization functionality yet, so it cannot be configured with TACACS or

RADIUS to jump directly to privilege exec mode. you need to go through with enable authentication mode.



username: xxxx

password:xxxx

>enable

password:


HTH


JK


Plz rate helpful posts-

Actions

This Discussion