Contents
xxvii
Cisco ASA 5500 Series Configuration Guide using the CLI
Guidelines and Limitations 37-2
Configuring Telnet Access 37-3
Using a Telnet Client 37-4
Configuring SSH Access 37-4
Using an SSH Client 37-5
Configuring HTTPS Access for ASDM 37-6
Configuring CLI Parameters 37-6
Licensing Requirements for CLI Parameters 37-7
Guidelines and Limitations 37-7
Configuring a Login Banner 37-7
Customizing a CLI Prompt 37-8
Changing the Console Timeout 37-9
Configuring ICMP Access 37-10
Information About ICMP Access 37-10
Licensing Requirements for ICMP Access 37-10
Guidelines and Limitations 37-10
Default Settings 37-11
Configuring ICMP Access 37-11
Configuring Management Access Over a VPN Tunnel 37-12
Licensing Requirements for a Management Interface 37-12
Guidelines and Limitations 37-12
Configuring a Management Interface 37-13
Configuring AAA for System Administrators 37-13
Information About AAA for System Administrators 37-14
Information About Management Authentication 37-14
Information About Command Authorization 37-14
Licensing Requirements for AAA for System Administrators 37-17
Prerequisites 37-17
Guidelines and Limitations 37-18
Default Settings 37-18
Configuring Authentication for CLI and ASDM Access 37-19
Configuring Authentication to Access Privileged EXEC Mode (the enable Command) 37-19
Configuring Authentication for the enable Command 37-20
Authenticating Users with the login Command 37-20
Limiting User CLI and ASDM Access with Management Authorization 37-21
Configuring Command Authorization 37-22
Configuring Local Command Authorization 37-23
Viewing Local Command Privilege Levels 37-26
Configuring Commands on the TACACS+ Server 37-26