cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1153
Views
0
Helpful
1
Replies

ASA firewall configuration lock

jotero
Level 1
Level 1

I want to know if exists some mechanism to lock configuration in Cisco ASA (cli and asdm). Is frequent that when i try to apply ASDM configuration others have configured somethink and the work is lost.

In IOS is possible to lock the configuration, and i think will be useful in ASA.

1 Reply 1

varrao
Level 10
Level 10

Hi Jose,

You can create privelege level on the ASA, which woudl give limited access to the firewall to other users, you can create usernames with limted priveleg levels on ASA, so that they cannot edit any configuration on the ASA. You can also configure command authorization on the ASA, these docs would help you with it:

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/uz.html#wp1568449

Command Privelege level:

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/mgaccess.html#wp1042040

AAA Authorization command:

http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/a1.html#wp1537175

Config Example for command authorization:

http://www.cisco.com/en/US/products/ps6120/prod_configuration_examples_list.html

Hope  this helps,

Varun

Please rate helpful posts.

Thanks,
Varun Rao
Review Cisco Networking for a $25 gift card