Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
972
Views
0
Helpful
1
Replies

ASA Local User Default Access Restrictions

Dadriel
Level 1
Level 1

‎03-30-2021 12:35 AM

Hi,

 

we are using local users on our ASA for remote VPN access and want to give them no further access on the ASA. Therefore we set their Access Restrictions to "No ASDM/CLI" as per our policy.

 

Unfortunately one of our admins recently forgot to change that setting and left it on the default setting of "Full access". To prevent such an issue occuring again in the future I would like to know if it is possible to set the default access restriction to "No ASDM/CLI" for a newly created user. This way we can't forget to set this setting anymore. 

0 Helpful
1 Reply 1

balaji.bandi
Hall of Fame
Hall of Fame

‎03-30-2021 04:19 AM

if the VPN Pool is different from LAn, why not add access rule for the subnet not to access SSH/https to ASA IP address

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card