Hi,
I'm working now with WB section 'ASA local authentication' and I have one problem with ASDM read-only access.
I checked documentation and I found:
"The nas-prompt keyword allows access to the CLI when you configure the aaa authentication {telnet | ssh | serial} consoleLOCAL command, but denies ASDM configuration access if you configure the aaa authentication http consoleLOCAL command. ASDM monitoring access is allowed. "
I tried following configuration:
aaa authentication http console LOCAL
aaa authorization command LOCAL
aaa authorization exec LOCAL
username http password http encrypted
username http attributes
service-type nas-prompt
When I try open ASDM I see following error message:" you do not have sufficient privileges to execute commands requirted to load ASDM..."
I can authenticate and open ASDM session and configuration command is hidden but I can't load the current configuration to monitor the ASA. Have I missed something in my configuration?
regards
Hubert