Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
496
Views
0
Helpful
1
Replies

AAA authentication session to FWSM module

Bruce Summers
Level 1
Level 1

‎07-27-2010 04:28 PM - edited ‎03-11-2019 11:17 AM

I need to pose a question:

I understand that the authentication process is managed in the admin context...I presently have module setup to authenticate with a local account.  However, I'd like to configure the telnet session from the switch to the FWSM using AAA.

I have a configuration on the specific contexts that allow me to SSH into the contexts, using AAA authentication, as follows:

aaa-server <group> protocol tacacs+

aaa-server <group> (outside interface) host <ip>

aaa-server <group> (outside interface) host <ip>

aaa auth en con <group> LOCAL

aaa auth ssh con <group> LOCAL

I'm a little leary about modifying the admin context for the type of auth (dont want to lock myself out)...

So, my question is, as long as i can communicate with the TACACS appliance(s) from the admin context, should the config that I'm using work for my telnet session from the switch to the FWSM?.

thanks.

bruce         

Labels:
0 Helpful
1 Reply 1

Bruce Summers
Level 1
Level 1

‎07-27-2010 05:29 PM

Well,

I got it to work up to the point of authenticating the enable access...

so, when i authenticate into user mode to the FWSM, it performs the auth...when i then try to enter exec mode (Enable) it isnt auth aaa...its using the local database...

thoughts?

bruce

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card