1. Open the Cisco ASDM client.
2. From the ASDM Home screen, click on the “Configuration” tab up in the top left corner.
3. From here, click on “Remote Access VPN” tab.
4. From this tab, navigate to “AAA/Local Users>Local Users”.
5. Click on the “Add” button on the right side of the ASDM.
6. For Engineers, you can give “Full Access(ASDM, SSH, Telnet, Console)” and then assign privilege levels accordingly. For basic user VPN access, click on the “No ASDM, SSH, Telnet or Console access” circle.
7. Once you have the profile done, click on the VPN Policy tab. This tab will allow you to give them the VPN access policy. Once in the VPN Policy tab, uncheck the checkbox next to “Group Policy, Inherit”, and then select “VPN-Test” on the drop down. This is all you need to do here for the profile.
8. You can now see your newly created profile in the “Local Users” section in the ASA. Now you just need to click “Apply”. This sends the commands to the ASA that creates this profile and settings.
9. A good rule of thumb I noticed is to navigate to a different tab on the left to ensure the Apply greys out. This will ensure it has been saved and is in the ASA configs.
2. From the ASDM Home screen, click on the “Configuration” tab up in the top left corner.
3. From here, click on “Remote Access VPN” tab.
4. From this tab, navigate to “AAA/Local Users>Local Users”.
5. Click on the “Add” button on the right side of the ASDM.
6. For Engineers, you can give “Full Access(ASDM, SSH, Telnet, Console)” and then assign privilege levels accordingly. For basic user VPN access, click on the “No ASDM, SSH, Telnet or Console access” circle.
7. Once you have the profile done, click on the VPN Policy tab. This tab will allow you to give them the VPN access policy. Once in the VPN Policy tab, uncheck the checkbox next to “Group Policy, Inherit”, and then select “VPN-Test” on the drop down. This is all you need to do here for the profile.
8. You can now see your newly created profile in the “Local Users” section in the ASA. Now you just need to click “Apply”. This sends the commands to the ASA that creates this profile and settings.
9. A good rule of thumb I noticed is to navigate to a different tab on the left to ensure the Apply greys out. This will ensure it has been saved and is in the ASA configs.
No comments:
Post a Comment