https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662986#M422588 <HTML><HEAD></HEAD><BODY><P>I have the same kind of problem but with different RADIUS server (FreeRADIUS) and ASA 5520 (7.2). Is there a way to log into ASA with defined privilege level ? It is possible to define local user but it doesn't work with RADIUS logging enabled. </P><P>Thanks in advance for any help</P></BODY></HTML> Wed, 07 Jul 2010 07:26:20 GMT wojciech.wojcik 2010-07-07T07:26:20Z https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662984#M422586 <P>Hi, with IOS router and switch I'm able to authorize the user to jump automatically to the correct privilege level in login phase, as configured in authorization privilege field in ACS. </P><P>With PIX/ASA the jump does not run: why ?</P><P>thank you in advance</P><P>RS</P> Sun, 10 Mar 2019 21:48:43 GMT https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662984#M422586 r.spiandorello 2019-03-10T21:48:43Z https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662985#M422587 <HTML><HEAD></HEAD><BODY><P>It's a security feature. Requires knowing two passwords to get full access to the device.</P><P></P><P>HTH and please rate if it does.</P><P></P></BODY></HTML> Thu, 26 Oct 2006 16:09:45 GMT https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662985#M422587 Collin Clark 2006-10-26T16:09:45Z https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662986#M422588 <HTML><HEAD></HEAD><BODY><P>I have the same kind of problem but with different RADIUS server (FreeRADIUS) and ASA 5520 (7.2). Is there a way to log into ASA with defined privilege level ? It is possible to define local user but it doesn't work with RADIUS logging enabled. </P><P>Thanks in advance for any help</P></BODY></HTML> Wed, 07 Jul 2010 07:26:20 GMT https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662986#M422588 wojciech.wojcik 2010-07-07T07:26:20Z https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662987#M422589 <HTML><HEAD></HEAD><BODY><P>I have to disagree here.</P><P></P><P>It's not a security feature. The privilege level feature was never properly implemented in the PIX/ASA. You may call it a bug <SPAN __jive_emoticon_name="happy" __jive_macro_name="emoticon" class="jive_macro jive_emote" src="https://community.cisco.com/images/emoticons/happy.gif"></SPAN></P><P></P><P>I would have been a security feature if it would be implemented on all privilege levels besides level 15, so that users were prevented from going directly to priv. exec mode. But on the ASA/PIX, it does not work for any level (as the feature was not implemented).</P><P></P><P></P><P>Regards</P><P><BR />Farrukh</P></BODY></HTML> Thu, 08 Jul 2010 14:02:04 GMT https://community.cisco.com/t5/network-access-control/automatic-jump-to-privilege-level-15-in-pix-asa/m-p/662987#M422589 Farrukh Haroon 2010-07-08T14:02:04Z