AAA Login issue to ASA Admin context

Srinivasan Nagarajan · ‎03-14-2018

Hi Experts

We've an ASA configured with Multiple security contexts and we're unable to login to Admin/System context but we're ABLE to login to other security contexts using TACACS. Please let us know for any output if required.

Cisco Adaptive Security Appliance Software Version 9.1(5)12

Transparent Mode

Multiple Security Contexts configured

++++++++++++++++++++

Firewall# sh run | i aaa
aaa-server TACACS-INT protocol tacacs+
aaa-server TACACS-INT (inside) host X.X.X.X

key ************
aaa-server TACACS-INT (inside) host X.X.X.X
aaa authentication enable console TACACS-INT LOCAL
aaa authentication ssh console TACACS-INT LOCAL
aaa proxy-limit disable

Firewall/Context# sh run | i TSG-TACACS-INT
aaa-server TACACS-INT protocol tacacs+
aaa-server TACACS-INT (inside) host X.X.X.X
aaa-server TACACS-INT (inside) host X.X.X.X

key ************

Florin Barhala · ‎03-16-2018

Hey mate,

This sounds a bit weird, let's see what you can do.
1. Can you access the FW via console?
2. We would need the following output from "system execution space":

show run context
show firewall

I want to see the admin context definition.

3. Last but not least, how are your contexts set up ? Routed or transparent? show firewall will give us more info

Srinivasan Nagarajan · ‎03-24-2018

Hi Florin

Apologies for the late reply. There zone was wrongly configured and after changing it, we're able to access it. Thanks..