https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034243#M895345 <HTML><HEAD></HEAD><BODY><P>George</P><P></P><P>If a user can log in to the admin context then from there they can access the system execution space and the other contexts. </P><P></P><P>However if you gave a user the ability to log in to one of the other contexts ie. contextA they would not be able to move from contextA to system execution space or any of the other contexts.</P><P></P><P>So giving access to the admin context gives system administrator access to all contexts.</P><P></P><P>Jon</P></BODY></HTML> Wed, 08 Oct 2008 16:36:50 GMT Jon Marshall 2008-10-08T16:36:50Z https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034242#M895343 <P>Can anyone explain what the purpose of the admin context is? The other user contexts seem pretty self explanatory. </P><P>What is the purpose of admin context?</P><P>How is different from the other contexts?</P><P>What would it be used for?</P><P>We are going to manage the FWSM with Cisco Security Manager and are curious about how to implement the multiple contexts.</P><P>Any insight or info would be appreciated.</P><P>Thanks....</P> Mon, 11 Mar 2019 13:54:43 GMT https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034242#M895343 georgeburtz 2019-03-11T13:54:43Z https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034243#M895345 <HTML><HEAD></HEAD><BODY><P>George</P><P></P><P>If a user can log in to the admin context then from there they can access the system execution space and the other contexts. </P><P></P><P>However if you gave a user the ability to log in to one of the other contexts ie. contextA they would not be able to move from contextA to system execution space or any of the other contexts.</P><P></P><P>So giving access to the admin context gives system administrator access to all contexts.</P><P></P><P>Jon</P></BODY></HTML> Wed, 08 Oct 2008 16:36:50 GMT https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034243#M895345 Jon Marshall 2008-10-08T16:36:50Z https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034244#M895347 <HTML><HEAD></HEAD><BODY><P>George,</P><P></P><P>Admin Context Configuration</P><P></P><P>The admin context is just like any other context, except that when a user logs in to the admin context, then that user has system administrator rights and can access the system and all other contexts. The admin context is not restricted in any way, and can be used as a regular context. However, because logging into the admin context grants you administrator privileges over all contexts, you might need to restrict access to the admin context to appropriate users. The admin context must reside on Flash memory, and not remotely.</P><P></P><P>If your system is already in multiple context mode, or if you convert from single mode, the admin context is created automatically as a file on the internal Flash memory called admin.cfg. This context is named "admin." If you do not want to use admin.cfg as the admin context, you can change the admin context. </P><P></P><P>Please refer the below URL for details:</P><P></P><P><A class="jive-link-custom" href="http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/contxt_f.html#wp1149689" target="_blank">http://www.cisco.com/en/US/docs/security/fwsm/fwsm32/configuration/guide/contxt_f.html#wp1149689</A></P><P></P><P>Regards,</P><P>Arul</P><P></P><P>** Please rate all helpful posts **</P></BODY></HTML> Wed, 08 Oct 2008 17:18:04 GMT https://community.cisco.com/t5/network-security/fwsm-in-multi-context-mode/m-p/1034244#M895347 ajagadee 2008-10-08T17:18:04Z