ASA MOTD with AAA

craig bache · ‎11-30-2012

Hi All

I am hoping someone is able to help on the following, I would expect the banner to be presented when the user first connects as per the Cisco link below:

http://www.cisco.com/en/US/docs/security/asa/asa82/configuration/guide/access_management.html

ASA-1(config)# sh run banner

banner motd ** W A R N I N G **

banner motd You have logged in to a secure device. If you are not authorized to access

when I have a Banner MOTD configured with AAA I get the following:

ASA-1# logout

Logoff

Username: cisco
Password: *****
** W A R N I N G **
You have logged in to a secure device. If you are not authorized to access
YOUR LOGGING ONTO A ASA
Type help or '?' for a list of available commands.
ASA-1>

The message is given after the user logs in.

Now when AAA is disabled the following happens:

ASA-1(config)# no aaa authentication serial console LOCAL
ASA-1(config)# exit
ASA-1# logout

Logoff

** W A R N I N G **
You have logged in to a secure device. If you are not authorized to access
Type help or '?' for a list of available commands.
ASA-1>

Am I reading the documentation incorrect as I thought this should be given if someone connected to the console? as this is what I am after.

Regards Craig

Sirajhussain · ‎12-05-2012

Hi Craig,

For me it is coming before entering password and which is actually correct functionality.

login as: admin

################################################

# Authorized access only

# Unauthorized users will be prosecuted

#

################################################

admin@192.168.10.10's password:

Let me know if you need the configuration..!!

Regards,

Siraj