Hi,
I am currently running a PIX v6.3(5) and I am looking to do login and enable authentication with TACACS+. I also want to do full command authorization. Is fallback on a local user/password database now supported with pix code after v6.3(4) ?
I found these release notes:
formatting link
AAA Fallback for Administrative Access This release introduces the ability to authenticate and authorize requests to fall-back to a local user database on the PIX Firewall. The requirements and design will factor future compatibility with Cisco IOS-like "method list" support for the PIX Firewall, and deliver the addition of the LOCAL fallback method. The following commands are now enhanced to create a fallback scenario for AAA administrative access: aaa authentication console A. aaa authorization command A. aaa authorization match aaa server crypto map command [no] aaa-server max-failed-attempts [no] aaa-server deadtime
Unfortunately, these made no sense to me and I cannot get local fall back to work. Has anyone gotten this to work on PIX code other than v7.*?
Thanks!