AppendixK Router Platform User Interface Reference
HTTP Policy Page
K-114
User Guide for Cisco Security Manager 3.2
OL-16066-01
Prioritized Method List Applies only when the Enable Device Login Authentication check box is
selected.
Defines a sequential list of methods to be queried when authenticating a user.
Enter the names of one or more AAA server group objects (up to four), or
click Select to display an Object Selectors, pageF-593. Use the up and down
arrows in the object selector to define the order in which the selected server
groups should be used.
The device tries initially to authenticate users using the first method in the
list. If that method fails to respond, the device tries the next method, and so
on, until a response is received.
If the AAA server group you want is not listed, click the Create button in the
selector to display the AAA Server Group Dialog Box, page F-12. From here
you can define a AAA server group object.
Note If you select None as a method, it must appear as the last method in
the list.
EXEC Authorization settings
Enable CLI/EXEC
Operations
Authorization
Applies only when AAA is selected as the authentication method.
When selected, EXEC authorization is based on the methods defined in the
Prioritized Method List field. This type of authorization determines whether
the user is permitted to open an EXEC (CLI) session.
When deselected, the default EXEC authorization list defined in the router’s
AAA policy is used. See AAA Page—Authorization Tab, pageK-90.
Note If you leave this option deselected, make sure that EXEC
authorization is enabled in the router’s AAA policy. Otherwise, you
will be unable to connect to the device via HTTP or HTTPS (SSL).
This applies to Security Manager as well as other applications, such
as SDM and the device’s web interface.
TableK-50 HTTP Page—AAA Tab (Continued)