Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1813
Views
3
Helpful
2
Replies

AAA Authentication on PIX

rajeev.gupta
Level 1
Level 1

‎03-04-2003 03:26 PM - edited ‎03-10-2019 07:10 AM

I want to setup AAA Authentication on PIX using Tacacs+ server.

I am using CiscoSecure ACS for Windows 2000.

Can anyone point me in the right direction on how to set this up.

I also need to setup different user levels. Like one group has full access and other group has ReadOnly. I have it working on my Routers, now I need to set it on my PIX.

Thanks for any and all the help.

Rajeev

Labels:
0 Helpful
2 Replies 2

tepatel
Cisco Employee
Cisco Employee

‎03-04-2003 04:23 PM

Here is the starting link for that

http://www.cisco.com/warp/public/110/pix51.shtml

Many sample config using PIX and tacacs can be found at

http://www.cisco.com/pcgi-bin/Support/browse/psp_view.pl?p=Hardware:PIX&viewall=true

rajeev.gupta
Level 1
Level 1
In response to tepatel

‎03-05-2003 08:26 AM

Thanks for the link, it helped alot....

now I am able to authentication but not authorization, my "ReadOnly" users are able to get into config mode, and make changes....

I need them to be only execute SHOW command and gew other commands, how would I do that....

here is my current PIX config....

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ (inside) host 10.XXX.YYY.ZZ bigkey timeout 10

aaa-server RADIUS protocol radius

aaa authentication enable console TACACS+

aaa authentication http console TACACS+

aaa authentication telnet console TACACS+

-Thanks for all the help...

0 Helpful
Customers Also Viewed These Support Documents