Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
474
Views
5
Helpful
3
Replies

Custom Profile for Firepower Chassis in Cisco ISE

NeWGuy1109
Level 1
Level 1

‎02-09-2022 04:48 AM

My firepower chassis is integrated with Cisco ISE via TACACS.. for monitoring tools i have assigned "read-only" and "operations" user profile.. i have a use case where monitoring tool wants to run connect module 1 in firepower chassis .. the problem here is that predefined profiles apart from admin role in firepower chassis doesn't allow connect module to run .. is it possible to create a custom role/profile for AAA users in firepower ? 

i am aware of "admin", "aaa", "operations" & "read-only" roles but i need a custom role.

Labels:
0 Helpful
3 Replies 3

balaji.bandi
Hall of Fame
Hall of Fame

‎02-09-2022 05:16 AM

yes you can create admin use and give only command required for the profile user in ISE.

 

example guide :

 

https://ciscocustomer.lookbookhq.com/iseguidedjourney/ISE-device-admin-policy-sets?utm_campaign=ISE&utm_content=Guide&utm_source=Cisco.com-Open&utm_medium=ISE-Page-Device-Admin&pfhide=true

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

NeWGuy1109
Level 1
Level 1
In response to balaji.bandi

‎02-09-2022 07:37 AM

does it apply to firepower as well ? i have used command sets for my Nexus and  ASA but the command sets  never applied to firepower chassis..it always seemed to take the attribute value which is matched from roles create in chassis

0 Helpful

balaji.bandi
Hall of Fame
Hall of Fame
In response to NeWGuy1109

‎02-09-2022 07:39 AM

never tested, worth trying as that is your requirement.

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents