Hi there. I'm trying to setup AAA on an ASA 5510. I've got an ISA server setup and AAA authentication is working properly. Is there any way to have the ASA recognize a username and assign an appropriate Privilege level? As far as I can tell it gives you level 15 once you authentication properly.
If ISA can't do this, what's the recommended path to accomplish this, keeping in mind that I can't afford the Cisco ACS software.
Ah I guess you're using a named authorization method rather than the default one which is why it need applying to the VTY lines. The default method would apply to all lines where not already configured.
Enter configuration commands, one per line. End with CNTL/Z.
Thanks for the response. It looks like your code example is for a router... I'm looking for some assistance with a PIX/ASA. I tried adding the command "aaa authorization include telnet inside x.x.x.x x.x.x.x" and it returned "Authorization is not supported in RADIUS."
Does anyone have an easy to use/easy to implement Tacacs server that is not thousands of dollars?
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...