01-06-2015 10:29 AM
So I was just hired a month ago and the IT department here is pretty new personnel-wise. I have been working on our Firewall rules and notices that our ASDM-IDM Launcher application does not require a usename or password to access the router. I have been looking and looking and cannot find where I can add a user and a password so that not just anyone with access to the server room can change firewall configurations. Anyone know how to do this or where I can look to figure this out? I don't know if it matters but we have a CISCO ASA 5510 device. Thanks in advance!
01-07-2015 02:01 PM
ASDM uses https to access an ASA.
The ASA controls how authentication is used/required for those sessions via the "aaa authentication http..." command.
How is that command setup in your ASA configuration?
01-07-2015 02:01 PM
I am very new to ASA, where do I find the information that you are looking for?
01-07-2015 02:41 PM
You can pull the info from the command line with "show run aaa". You can enter command line interface queries in ASDM via Tools > Command Line Interface if you're not comfortable logging into the cli directly.
In ASDM it's displayed graphically under "Configuration > Device Management > Users/AAA > AAA Access" and look for a check box next to "HTTP/ASDM" on the right.
01-07-2015 03:20 PM
Under the Authentication tab (and all the tabs) at the location that you sent me to in the GUI, there are no boxes checked including the "HTTP/ASDM" option.
01-07-2015 04:16 PM
OK, no box checked means don't require authentication.
1. Make sure you have a local user with level 15 (admin) privilege created already.
2. Select the box next to HTTP/ASDM and make sure you've selected LOCAL in the server dropdown.
3. Apply the change.
4. While leaving that ASDM session open, launch a new one and login. You should be required to use the username and password confirmed earlier.
5. Assuming that works, click save and you're done for now.
01-07-2015 03:20 PM
duplicate
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide