The parameter we want to control is the specification of the optional packet-length parameter. It's OK if analysts accept the default (e.g. they do not specify the packet-length parameter), but we want to control who can execute the capture command with a packet-length different from the default (actually it would be OK if they specified a smaller packet-length that the default 68 bytes, but I'll be happy if we can control the use of the packet-length parameter at all).
So, capture Test1 access-list acl-test interface inside would be an example of a command we would want to permit, but capture Test1 access-list acl-test interface inside packet-length 256 we would want to control. I don't know if packet-length can be abbreviated, or if it could be specified in other positions since it is optional, but assume you will test for those things as well.
Can we control the priviledge access for Cisco 5500 ASA in CiscoSecure 3.3?
Thanks for the info, Tarra. But how do I control the priviledge access in CiscSecure? For example in my case I want to control the "capture" command for Cisco 5500 ASA in CiscoSecure. Do Cisco System have a manual or whitepaper on example on how to control the "capture" command in CiscoSecure? It will be great if I can see some example on how to configure the SCAS in CiscoSecure to control the priviledge access.
We are pleased to announce availability of Beta software for 16.6.3. 16.6.3 will be the second rebuild on the 16.6 release train targeted towards Catalyst 9500/9400/9300/3850/3650 switching platforms. We are looking for early feedback from custome...