Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)

HTTP ASDM access

Is there a way to secure the access for ASDM after a user logs in?

For example:

ssh to public address prompts username and then a password for the enable

http doesn't. You can log into the ASDM with the local username and apply any change you want without using any other authentication. I'm assuming that the ASDM uses elevated authentication? Is there a way around this?

Thanks,

John

HTH, John *** Please rate all useful posts ***
1 ACCEPTED SOLUTION

Accepted Solutions

Re: HTTP ASDM access

John,

You need to use command authorization using tacacs or you can also setup local user with different access rights.

With TACACS

http://cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/mgaccess.html#wp1042034

Regards,

~JG

Do rate helpful posts

1 REPLY

Re: HTTP ASDM access

John,

You need to use command authorization using tacacs or you can also setup local user with different access rights.

With TACACS

http://cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/mgaccess.html#wp1042034

Regards,

~JG

Do rate helpful posts

194
Views
0
Helpful
1
Replies
CreatePlease to create content