Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Setting privilege level for logging into ASA through ACS

Hi!,

In my environment i implemented AAA for logging into switches, routers, asa etc through ACS which is being configured TACACS+.

I have set different privilege levels like readonly, readwrite etc into ACS. There are working fine when i try to login into switch or router.

But in ASA i am unable to restrict the privilege levels of different users.

Can someone plz guide me with ASA & ACS setting to solve this issue!!!!!

3 REPLIES

Re: Setting privilege level for logging into ASA through ACS

New Member

Re: Setting privilege level for logging into ASA through ACS

Hi!!

I tried this option. It is working fine with routers & switches. But for ASA privilege access it is not functioning.

I created 3 profiles in "Shared Profiles" & added 1 of them in Group setting & added users to this group with mentioning group authentication. This way i am able to control access to the switches & routers with proper privilege. But the same way when i tried to impolement ASA it's not happening.

Can u plz check it out...

Re: Setting privilege level for logging into ASA through ACS

What is the acs ver ? Did you try PIX Command Authorization instead of shell command author set ?

Regards,

~JG

279
Views
0
Helpful
3
Replies