Problem
It is necessary to grant access and allow commands in TACACS, in order to run the AlgoSec Firewall Analyzer (AFA) automated collection script. What commands does AFA execute when collecting data from PIX/ASA/FWSM devices?
Solution
AFA executes the following commands:
enable(or login)
show version
show pager
show mode terminal pager 100
show running-config
show route (when dynamic routing is used)
show access-list
show ipv6 access-list (from 6.4)
show context (when security contexts are defined)
quit
Comments