Forum Discussion

MichaelM's avatar
MichaelM
Icon for Altostratus rankAltostratus
Jun 18, 2019

FireMon Traffic Manager integration

I was wondering if somebody is using FireMon Traffic Manager together with TACACS+ on a BIG-IP?

 

I have a request to give access to a FireMon related service account with access to "bash". Remote user accounts on the BIG-IP are authenticated via TACACS+ which gives me one option only: assign FireMon service account to "Administrator" role (because it's the only remote role which can switch to "bash").

 

The challenge here is the fact that I don't want to allow any service account full access to the BIG-IP ... esp. if that service account runs commands like "cat /config/bigip.conf" or "tmsh show /net route" ...

 

Does anybody know if there is a 'device package' for FireMon available which allows integration using a non-administrative access role (e.g. Auditor)?

 

Any information is much appreciated.

 

No RepliesBe the first to reply