Privilege Level Cisco 515e Pix 2

[ebouza70]

Good afternoon to all,

I have a question about a Cisco 515e Pix. When we setup users for VPN access I notice that within the ADSM under configuration/Properties/Device Administration/user accounts it asks for a privilege level (Role) and you can choose 1 - 15. I know that 15 is administrator rights. Should we be giving this type of access level to regular users, or should I be using a another specific level? Thanks in advance for any help.

Thanks,
Erick

 

[Supergrrover]

NO, Don't give them level 15. Give them some level lower. Unless you define the level, there are only 2 by default. Level 15 - all access; and level 0 which is the lowest. With level 15 they can change your config - bad news.


Brent
Systems Engineer / Consultant
CCNP, CCSP

 

[david902]

just for grins and giggles you can assign every PIX command an access level (time consuming process), doing this you can allow different access levels to use different commands. for basic authentication give them level 0 access.