09-16-2011 07:35 AM - edited 03-10-2019 06:24 PM
Hi ,
I've configured several users on my ASA in it's local database.
Those users are used for ssl vpn login, but the problem that I have is that those users
also have SSH access. Is it possible to prevent this ?
Thanks
Solved! Go to Solution.
09-19-2011 02:23 AM
Hello Raf,
If you do something like this:
username xxx attributes
service-type remote-access
the user shouldn't get CLI access anymore.
Regards,
Bastien
09-20-2011 12:56 AM
Hi Raf,
Please try to add the following command:
aaa authorization exec LOCAL
This should fix your problem.
09-19-2011 02:23 AM
Hello Raf,
If you do something like this:
username xxx attributes
service-type remote-access
the user shouldn't get CLI access anymore.
Regards,
Bastien
09-19-2011 01:09 PM
Hi bastien,
I already tried that but still the user is able to get CLI access.
grtz
raf
09-20-2011 12:56 AM
Hi Raf,
Please try to add the following command:
aaa authorization exec LOCAL
This should fix your problem.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide