Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Local authorization on PIX versus IAS authentication

How do you configure pix to authenticate locally when using console and Radius on ssh. The problem we are having is if we enable Radius authentication, it tries to authenticate the enable password on the IAS when we console in. If we set to local, it uses the local password when we ssh. Also on the RAS policy on the IAS server, we added the AV-Pair shell:priv-lvl=15, however it still requires the ena password. We are also having the same problem with the local username.

username jdoe password secret privilege 15

aaa authentication ssh console radius

aaa authentication serial console local

Any ideas?

1 REPLY
Silver

Re: Local authorization on PIX versus IAS authentication

May be you can just change previledge level to get more granular control.

139
Views
0
Helpful
1
Replies
CreatePlease to create content