Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
651
Views
0
Helpful
1
Replies

ASA Radius Authentication

BRIAN O'LOUGHLIN
Level 1
Level 1

‎05-18-2011 08:28 AM - edited ‎03-11-2019 01:34 PM

Hi. I have a 5510 authenticating successfully with a RADIUS server.  I'm using it for VPN authentication and it works great.  I would also like to do this for adminstrator access to the ASA.  When I turn it on though, anyone that can authenticate for VPN access is also granted administrative access to the ASA.  Obviously, I need to limit that to a select few users.  Any ideas on overcoming this issue are appreciated.
Labels:
0 Helpful
1 Reply 1

Nicolas Fournier
Cisco Employee
Cisco Employee

‎05-19-2011 07:26 AM

Hi Brian,

This is achievable.

You should configure the following on your ASA: http://www.cisco.com/en/US/docs/security/asa/asa80/command/reference/a1.html#wp1544708

Then setup your Radius user with the service type attribute with either Admin or Remote access rights:

Service-type=Admin

Service-type=Remote-access






Regards,


Nicolas
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card