Cisco ASA 5505 Configuration Manual page 702

Asa 5500 series

Hide thumbs Also See for ASA 5505:

Getting started manual (168 pages)

Administrator's manual (118 pages)

Hardware installation manual (82 pages)

Table of Contents

Configuring Authentication for Network Access

Configuring Network Access Authentication

To enable network access authentication, perform the following steps. For more information about

authentication, see the

From the Configuration > Firewall > AAA Rules pane, choose Add > Add Authentication Rule.

The Add Authentication Rule dialog box appears.

From the Interface drop-down list, choose the interface for applying the rule.

In the Action field, click one of the following, depending on the implementation:

From the AAA Server Group drop-down list, choose a server group. To add a AAA server to the server

group, click Add Server. See the

information.

If you chose LOCAL for the AAA server group, you can optionally add a new user by clicking Add User.

In the Source field, add the source IP address, or click the ellipsis (...) to choose an IP address already

defined in ASDM.

In the Destination field, enter the destination IP address, or click the ellipsis (...) to choose an IP address

already defined in ASDM.

In the Service field, enter an IP service name or number for the destination service, or click ellipsis (...)

button to choose a service.

(Optional) In the Description field, add a description.

(Optional) Click More Options to do any of the following:

The dialog box closes and the rule appears in the AAA Rules table.

Click Apply.

The changes are saved to the running configuration.

Cisco ASA 5500 Series Configuration Guide using ASDM

"Information About Authentication" section on page

Authenticate

Do not Authenticate.

"Adding a User Account" section on page 31-18

To specify a source service for TCP or UDP, enter a TCP or UDP service in the Source Service field.

The destination service and source service must be the same. Copy and paste the destination Service

field to the Source Service field.

To make the rule inactive, uncheck Enable Rule.

You may not want to remove a rule, but instead turn it off.

To set a time range for the rule, from the Time Range drop-down list, choose an existing time range.

To add a new time range, click the ellipsis (...). For more information, see the

Ranges" section on page

"Configuring AAA Server Groups" section on page 31-8

for more information.

Configuring AAA Rules for Network Access

"Configuring Time

Show Quick Links

Chapters

Table of Contents

Asa 5510 Asa 5540 Asa 5520 Asa 5550 Asa 5580

Cisco ASA 5505 Configuration Manual page 702

Hide quick links:

Chapters

Related Manuals for Cisco ASA 5505

Related Products for Cisco ASA 5505

This manual is also suitable for:

Table of Contents