https://community.cisco.com/t5/network-security/asa-access/m-p/1956828#M440316 <HTML><HEAD></HEAD><BODY><P>What do you mean by "acessing a certain interface" - the interface on the ASA or resources sitting on a network behind it?</P><P></P><P>If by "local user" you mean a user on a given LAN, then sure that's the purpose of access lists and, potentially, identity-based firewall features.</P><P></P><P>If you mean a user with an administrative logon to the ASA itself, the answer is generally no (in a single context setup).</P></BODY></HTML> Fri, 29 Jun 2012 17:28:16 GMT Marvin Rhoads 2012-06-29T17:28:16Z https://community.cisco.com/t5/network-security/asa-access/m-p/1956827#M440315 <P>&nbsp;&nbsp; Hi,</P><P></P><P>Can you restrict a local user on ASA from accessing certain interface?</P><P></P><P>Regards,</P> Mon, 11 Mar 2019 23:24:36 GMT https://community.cisco.com/t5/network-security/asa-access/m-p/1956827#M440315 mohammedrafiq 2019-03-11T23:24:36Z https://community.cisco.com/t5/network-security/asa-access/m-p/1956828#M440316 <HTML><HEAD></HEAD><BODY><P>What do you mean by "acessing a certain interface" - the interface on the ASA or resources sitting on a network behind it?</P><P></P><P>If by "local user" you mean a user on a given LAN, then sure that's the purpose of access lists and, potentially, identity-based firewall features.</P><P></P><P>If you mean a user with an administrative logon to the ASA itself, the answer is generally no (in a single context setup).</P></BODY></HTML> Fri, 29 Jun 2012 17:28:16 GMT https://community.cisco.com/t5/network-security/asa-access/m-p/1956828#M440316 Marvin Rhoads 2012-06-29T17:28:16Z