Cisco Cisco Firepower Management Center 2000 Technisches Handbuch
Under Shell Access Filter, enter a comma separated list of users to restrict shell/SSH
sessions.
sessions.
●
Enable External Authentication
Finally, complete these steps in order to enable external authentication on the FMC:
Navigate to System > Local > System Policy.
1.
Select External Authentication on the left panel.
2.
Change the Status to Enabled (disabled by default).
3.
Enable the added ACS RADIUS server.
4.
Save the policy and reapply the policy on the appliance.
5.
Verification
To test user authentication against ACS, scroll down to the Additional Test Parameters
section and enter a username and password for the ACS user. Click Test. A successful test
will result in a
section and enter a username and password for the ACS user. Click Test. A successful test
will result in a
green
Success: Test Complete message at the top of the browser window.
●
To view the results of the test authentication, go to the Test Output section and click the
black arrow next to Show Details. In the example screenshot below, note the "radiusauth -
response: |Class=Groups:FireSight Administrator|" value received from ACS. This should
match the Class value associated with the local FireSight group configured on the FireSIGHT
MC above. Click Save.
black arrow next to Show Details. In the example screenshot below, note the "radiusauth -
response: |Class=Groups:FireSight Administrator|" value received from ACS. This should
match the Class value associated with the local FireSight group configured on the FireSIGHT
MC above. Click Save.
●