Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1439
Views
0
Helpful
1
Replies

ACS 3.1 Failed Attempt

jamesgef
Level 1
Level 1

‎08-11-2003 06:35 AM - edited ‎03-10-2019 07:26 AM

We have a PIX firewall with authorization configured on ACS 3.1 so that certain outside users only have web access to only one machine (cmd:http arguments: permit x.x.x.x). It works fine, however, when I look into my Failed Attempts I often get the message:

Authorization Failure Code: Service Denied

Authorization Data: service=shell cmd*

What is this message about? What does "cmd*" mean?

Thanks!

James

Labels:
0 Helpful
1 Reply 1

jsivulka
Level 5
Level 5

‎08-18-2003 06:59 AM

I think the message simple means that the user is not authorised to do what he/she is trying to do. For example, a user might be trying to telnet to the router but is not authorized to do so.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents