We have just purchased two PIX 515E units and have an issue, we are using an AAA (RADIUS) server for authentication to authenticate (Via Active Directory) user before they connect to the Internet.
The problem we are experiencing is that the PIX unit seems, Once it has authenticated, it enters in the Authenticated users area (In the PDM) the IP of the machine he / she is on. The problem is that a user can disconnect from the Internet reboot the machine then someone else logs onto the machine and he or she will not be prompted for authentication? (We feel this is a security flaw in the PIX?)
Is there any way that we can resolve this, or is this just the way the PIX is designed to do this? We feel if there is no solution to this problem that we will have top send back our units to the supplier and find a more suitable product.
Thanks for your email, Wew have set absulote to 15mins ( If we lowered it users would be prompting every * minutes whist using it) but as explained I could log of my system and someone else could log on with the 15 mins and still no authentication would be required ?
Is there any way we could authenticate via user rather then IP ?
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationConfigure one of the connectivity options to access the Cisco IMC from the n...
Firepower Threat Defense (NGFWv) on UCS E-series - Transparent Mode in HA
DocumentationCode download linksGoalRequirementLimitationsSupported ISR and UCS-E ModelSupported ISRG2 and UCS-E Blades:Supported ISR4K and UCS-E Blades:Step by Step ConfigurationCo...
I am currently unable to specify "crypto keyring" command when configuring VPN connection on my cisco 2901 router.
The following licenses have been activated on my router :