cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
851
Views
0
Helpful
4
Replies

Allow local user for only ASA admin and not RA VPN

ABaker94985
Spotlight
Spotlight

We are trying to remediate the RA VPN vulnerability of CVE-2023-20269. We use TACACS+ to login, but there is a local backup account in case TACACS+ goes down. Is there some way to prevent this account from being utilized by AnyConnect?

I understand we can lock a userame into a profile, but I don't believe that's what I'm intending on doing.

Thanks