Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements
Step-by-Step Configuration and Troubleshooting Best Practices for the NGFW, NGIPS and AMP Technologies A Visual Guide to the Cisco Firepower Threat Defense (FTD)
Community Member

HTTPS inbound to PIX using authorization

I have a private web server behind a PIX firewall. Is there a method of having the PIX require inbound authorization (UID and Password, credentials stored on an AAA server or in the local database), prior to allowing a connection to the protected web server ?

1 REPLY
Cisco Employee

Re: HTTPS inbound to PIX using authorization

Sure, this is what authorization proxy is for. The documentation for this is pretty good and does a better job than what I could do here. The documentation is located here for recent versions of the PIX software:

http://www.cisco.com/en/US/docs/security/asa/asa80/configuration/guide/fwaaa.html

Old software used "aaa authentication include". New software has moved to "aaa authentication match".

You must define your AAA server prior to the "aaa authentication xxxxxx" command since the aaa command references the AAA server.

Hope this helps.

124
Views
0
Helpful
1
Replies
CreatePlease to create content