Management access to security contexts, System administrator access – Cisco ASA 5505 User Manual
Page 207
5-7
Cisco ASA 5500 Series Configuration Guide using the CLI
Chapter 5 Configuring Multiple Context Mode
Information About Security Contexts
shows a gateway context with two contexts behind the gateway.
Figure 5-4
Cascading Contexts
Management Access to Security Contexts
The ASA provides system administrator access in multiple context mode as well as access for individual
context administrators. The following sections describe logging in as a system administrator or as a
context administrator:
•
System Administrator Access, page 5-7
•
Context Administrator Access, page 5-8
System Administrator Access
You can access the ASA as a system administrator in two ways:
•
Access the ASA console.
From the console, you access the system execution space, which means that any commands you enter
affect only the system configuration or the running of the system (for run-time commands).
•
Access the admin context using Telnet, SSH, or ASDM.
See
Chapter 37, “Configuring Management Access,”
to enable Telnet, SSH, and SDM access.
As the system administrator, you can access all contexts.
When you change to a context from admin or the system, your username changes to the default
“enable_15” username. If you configured command authorization in that context, you need to either
configure authorization privileges for the “enable_15” user, or you can log in as a different name for
which you provide sufficient privileges in the command authorization configuration for the context. To
Admin
Context
Context A
Gateway
Context
GE 1/1.43
GE 0/0.2
Outside
GE 1/1.8
GE 0/0.1
(Shared Interface)
Internet
Inside
Inside
Outside
Inside
Outside
153366