09-06-2024 11:51 AM - edited 09-06-2024 12:44 PM
I am in the process of changing our 5506 series ASA to point from our old AAA servers over to our ISE nodes (current AAA servers). I have added the ASA into the network device list and created a policy set for the ASA. I have also replaced the AAA servers in the ASA with the ISE nodes. I attempted to SSH into the ASA and within the ISE live logs I get a successful login however on the ASA I get rejected with a "access denied" message. I am unsure if it is the ISE side or the ASA config that is messing me up. any ideas?
09-09-2024 12:26 AM
Can I see authz policy you set
MHM
09-11-2024 01:25 AM
It could be something related to the exec authorization. Please share the sanitized config of the AAA on the ASA and ISE policies for review.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide