Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
It's a standalone appliance 1112 running on ACS v3.3, how to migrate to another standalone appliance 1120 with ACS v5.1?Does CISCO have any documents about this?I remember I used to read an article about how to build a temp ACS v4.2 windows to help t...
I know by setting management interface ASA can ping or telnet/SSH to the inside interface of the remote ASA through VPN. But it doesn't work for TFTP. Is there a way to copy config to TFP server in remote site through VPN and using source interface a...
I want to use TACACS to do ASA accounting, meanwhile the ASA need RADIUS to support ssl vpn authentication. Is that possible to achieve this object with only one ACS?
Is there a way to drop a user directly into level 15 on ASA just like it on router/switch, meanwhile keep its username as original (don't change to enable_15)?
In order to authorize command on ASA8.x for different users, I have to put 'aaa authentication enable console TACACS' into ASA configuration, and in ACS - user setup - TACACS+ enable password - Use separate password, I set an enable password. It work...
disccuss on this issue further, the following command works and it copies config to tftp server in remote site.asa(config)# copy startup-config tftp Address or name of remote host [192.168.11.10]? Destination filename ...
Your 'Tftp-server interface' command remind me that ipsec traffic is somehow different. So I set 'tftp-server inside /' on the asa and it works now.Thanks for your help Jorge.
It doesn't work for me. please see the asa output below.asa(config)# ping inside 192.168.11.10Type escape sequence to abort.Sending 5, 100-byte ICMP Echos to 192.168.11.10, timeout is 2 seconds:?!!!!Success rate is 80 percent (4/5), round-trip min/av...
Hi Jorge,Thanks for replying. I think I may not describ my question clearly. The senario I'm asking is a IPSEC site to site VPN, not a Remote access VPN.Regards,
