cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

1020
Views
0
Helpful
1
Replies
Highlighted
Beginner

Assigning privileges on ASA with RADIUS

Hello. I'm using ASA 5510 8.2, ACS 4.2 for windows and RADIUS for auth.

I would like to assign priv level to user on logon. Docs says that I have to send Cisco VAS CVPN3000-Privilege-Level (id is 220), but I can't see this option in Interfaces configuration.

How do I set this attribute in ACS? Maybe somehow i can manually specify VAS?

Thank you.

1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Enthusiast

You can control the maximum privilege level with that AV pair, but you cannot assign a privilege level upon login like you can do with exec authorization on IOS.

View solution in original post

1 REPLY 1
Highlighted
Enthusiast

You can control the maximum privilege level with that AV pair, but you cannot assign a privilege level upon login like you can do with exec authorization on IOS.

View solution in original post

Content for Community-Ad