10-05-2021 12:32 PM
Community,
I have configured my Firepower FTD's (2140s and 4140's) for Radius Auth and my FMC for LDAP authentication. However, I am noticing that I am still able to log in to these devices using the local admin account. Is this by design? Is there a way to force only the Radius/LDAP auth until the External Authentication method is no longer available, similar to a local fallback mechanism on a router or switch?
Thank you.
Solved! Go to Solution.
10-05-2021 12:45 PM
Unfortunately you cannot configure the FMC like fallback on a switch or router. The documentation states "If the user is not present in the local database, the system queries an external LDAP or RADIUS authentication server".
So the local admin user will always have access.
10-05-2021 12:45 PM
Unfortunately you cannot configure the FMC like fallback on a switch or router. The documentation states "If the user is not present in the local database, the system queries an external LDAP or RADIUS authentication server".
So the local admin user will always have access.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide