Solved

Cisco ASA Config

Posted on 2014-03-18
2
603 Views
Last Modified: 2014-03-19
Current version of my Cisco ASA is 9.0(2).
As I understand it, if I were to upgrade to the latest version 9.1(3), I would have a login issue with ASDM 7.1(5).  I believe I need to require a user name when accessing the device (currently its blank).
----------------------------------
From Cisco site:
•ASDM login issue in 9.1(3) and later—
You can no longer log into ASDM with no username and the enable password.

You must configure ASDM AAA authentication
(Configuration > Device Management > Users/AAA > AAA Access > Authentication and associated username configuration)
and/or
ASDM certificate authentication
(Configuration > Device Management > Management Access > ASDM/HTTPS/Telnet/SSH).

Before you upgrade to 9.1(3), be sure to configure one of these authentication methods.
----------------------------------
My problem/question:
when I access the location indicated, I can edit the items shown but I don't get how to change the configuration necessary for the new version.

Thanks for any help.
ASA5505.pdf
0
Comment
Question by:ShawnGray
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 4

Accepted Solution

by:
MarcusSjogren earned 500 total points
ID: 39938438
Hi,

I have no ASDM available so I cannot make a screenshot, but go to Device Management -> Users/AAA -> User Accounts and add a new user + password, privilege level 15.

Then go to D M -> Users/AAA -> AAA Acess and check "ASDM" and select "LOCAL". You can now try to connect with ASDM and your new username.

Please try to do the above but for telnet first (exactly the same) just to make sure that you have a backup plan on how to reload the unit in case you get locked out :-)
0
 

Author Comment

by:ShawnGray
ID: 39940213
Excellent. Thank you Marcus.
0

Featured Post

Free Tool: Site Down Detector

Helpful to verify reports of your own downtime, or to double check a downed website you are trying to access.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

In this tutorial I will show you with short command examples how to obtain a packet footprint of all traffic flowing thru your Juniper device running ScreenOS. I do not know the exact firmware requirement, but I think the fprofile command is availab…
Imagine you have a shopping list of items you need to get at the grocery store. You have two options: A. Take one trip to the grocery store and get everything you need for the week, or B. Take multiple trips, buying an item at a time, to achieve t…
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …

739 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question