Hello Cisco Supermen
I know this have been discussed before, but I have tried all the things still cannot get it work.
I have ASA vr 9.4, ASDM vr 7.6. and we are using Win2012 Radius to authenticate users access to ASDM. Now I need to give some Radius users read-only ASDM access. I tried to use the service type 7 NAS Prompt, but no difference made. Then I ask setup Vendor-assigned attribute 220 to 5, then when logon ASDM, ASDM recognized the user's privilege is 5, but the user still can do very thing. And when I setup 'aaa authorization http console RADIUS' I got "authorization rejected: reason AAA failed"
Can someone please give me a clear guild of how to setup this, on the WIN Radius server and the ASA?
Thank you so much.