Cisco Cisco Firepower Management Center 4000

If you want users with this role to use their own passwords when they escalate, select 

.

If you want users with this role to use the password of another user, select 

 and type that username.

When authenticating with another user’s password, you can enter any username, even that of a 
deactivated or nonexistent user. Deactivating the user whose password is used for escalation 
makes escalation impossible for users with the role that requires it. You can use this feature to 
quickly remove escalation powers if necessary.

Click 

.

Your changes are saved and the User Roles page appears again. Users with this role can now escalate to 
the target user role. For more information on assigning roles to a user, see 

Any

When a user has an assigned custom user role with permission to escalate, that user may escalate to the 
target role’s permissions at any time. Note that escalation has no effect on user preferences. The 

 option in the User menu does not appear if your assigned user role is not configured for user 

role escalation.

Any

Select 

.

The Escalate User Permissions dialog box appears.

Enter the authentication password.

Click 

. 

You now have all permissions of the escalation target role in addition to your current role.

Note that escalation lasts for the remainder of your login session. To return to the privileges of your base 
role only, you must log out, then begin a new session.

Any

ASA FirePOWER

Single sign-on (SSO) enables integration between Cisco Security Manager (CSM) Version 4.7 or higher 
and the Defense Center, which allows you to access the Defense Center from CSM without additional 
authentication to log in. When managing the ASA module of an ASA FirePOWER device, you may want