Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Configure username on ASA for VPN, but prohibit "Asdm Admin" account

Problem statement:

SSL VPN Client (AnyConnect)

SSL VPN users are authenticated using the local user database stored in the Cisco ASA.

SSL VPN is also sharing the same local user database with ASDM

Problem lies where by the ASDM administrator (Privilege 15 + Full access) is also allowed to authenticate for access permits to the VPN connection.

Is there a solution where we can disable ASDM administrator account to access the VPN connection from outside

Please advise

3 REPLIES

Re: Configure username on ASA for VPN, but prohibit "Asdm Admin"

username <> password <> privilege 2

HTH>

New Member

Re: Configure username on ASA for VPN, but prohibit "Asdm Admin"

Hi Andrew, thanks for you reply.

Are you suggesting to configure my ASDM Administrator account to a privilege 2?

If that is so, i wont be able to use my admin account to configure my usual administration task?

Re: Configure username on ASA for VPN, but prohibit "Asdm Admin"

No I was suggesting that you create "other" local usernames for WebVPN access, and leave your admin username just for ADSM access.

367
Views
0
Helpful
3
Replies