Details
Authenticates ASDM users who access the security appliance over HTTP
Rationale:
By default, the enable password is used in combination with no username for http access. The aaa command is used to define the TACACS+/RADIUS authentication method. The local database can be mentioned as backup method to this primary method, failing that the ASDM will use the default administrator username and enabled password for authentication.
Solution
Configure the aaa authentication for http using the TACACS+ server-group as primary method and the local database as backup method.
hostname(config)#aaa authentication http console
Default Value:
The http aaa authentication is disabled by default.
Supportive Information
The following resource is also helpful.
This security hardening control applies to the following category of controls within NIST 800-53: Access Control.This control applies to the following type of system Cisco.