06-25-2018 07:18 PM
Do we support creating a local account on ISE using public SSH Key for our security auditors?
Solved! Go to Solution.
06-26-2018 11:08 AM
I am guessing it depends on what the auditor requires to do. ISE CLI users have two roles only -- admin or oper
my240/admin(config)# username audit password plain testAudit role ?
admin Specifies user with administrative role privileges
user Specifies user with read-only role privileges
06-26-2018 09:47 AM
ISE admin CLI accounts are local only. Yes, it supports using SSH public key, which can be imported using crypto, e.g.:
crypto key import id_rsa.pub repository myRepo
06-26-2018 10:44 AM
Hi,
TAC suggested that a Local Account cannot be created for the security auditor team. Just trying to confirm
- I can create a local account called "SecurityAuditor" and import the SSH public key using "crypto key import id_rsa.pub repository myRepo"
- Also, can the SecurityAuditor" account be restricted or does it have to be admin?
Thanks,
Jason
06-26-2018 11:08 AM
I am guessing it depends on what the auditor requires to do. ISE CLI users have two roles only -- admin or oper
my240/admin(config)# username audit password plain testAudit role ?
admin Specifies user with administrative role privileges
user Specifies user with read-only role privileges
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide