Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

LMS 2.6 Login issue

I have a user that is able to login to LMS via TACACS/SecurID without a CW local login account, he gets guest privs, is this a bug, shouldn't he be unable to log in without a local account set up?

1 ACCEPTED SOLUTION

Accepted Solutions
Cisco Employee

Re: LMS 2.6 Login issue

Miheg is absolutely right. This has been the case since we introduced external login modules. Every user with a valid account in the external database will be allowed Help Desk access to LMS unless they have a local account in LMS granting them more access.

I used to have a patch for LMS 2.2 which worked around this. However, in LMS 2.5+ you have the option of using ACS integration. If you do full ACS integration, you can effectively prevent people with ACS accounts from having any access in LMS.

2 REPLIES
Silver

Re: LMS 2.6 Login issue

No, that is the intended behavior.

Guest or helpdesk level is what he gets.

Cheers,

Michel

Cisco Employee

Re: LMS 2.6 Login issue

Miheg is absolutely right. This has been the case since we introduced external login modules. Every user with a valid account in the external database will be allowed Help Desk access to LMS unless they have a local account in LMS granting them more access.

I used to have a patch for LMS 2.2 which worked around this. However, in LMS 2.5+ you have the option of using ACS integration. If you do full ACS integration, you can effectively prevent people with ACS accounts from having any access in LMS.

181
Views
5
Helpful
2
Replies