cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1615
Views
0
Helpful
3
Replies

ASA Privilge level from Radius (Cisco ISE)

ibrahim_hassan
Level 1
Level 1

Dears,

         i treid to authenticate ASA managment access from ISE and it is working fine , when i tried to push priv level 15 to it still in Priv 1.

i am using Cisco-AV-Pair attribute , my ASA version is 9.0

Thanks

1 Accepted Solution

Accepted Solutions

Even if you push cisco-av-pair attribute as shell:priv-lvl=15 to ASA, it won't allow you to land directly on privilege exec mode. You've to supply enable password before you get # mode.

https://supportforums.cisco.com/thread/2201512

Let me know if you've some other requirement.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin

View solution in original post

3 Replies 3

Saurav Lodh
Level 7
Level 7

Use cisco-avpair           = shell:priv-lvl=15 for it

Even if you push cisco-av-pair attribute as shell:priv-lvl=15 to ASA, it won't allow you to land directly on privilege exec mode. You've to supply enable password before you get # mode.

https://supportforums.cisco.com/thread/2201512

Let me know if you've some other requirement.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin

Things have changed. (-:

 

When I log in to my ASA 9.1(5), I land directly on privilege exec mode.