It is a good security practice to configure a Warning login banner on your Cisco ASA firewall appliance for unauthorized access attempts. The command format is:

ciscoasa(config)# banner {asdm | exec | login | motd text}

As you can see from the command format, there are four access banner types as following:

  • asdm: The Firewall displays a banner after you successfully log in to ASDM.
  • exec: The Firewall displays a banner before displaying the enable prompt.
  • login: The Firewall displays a banner before the password login prompt when accessing the security appliance using Telnet.
  • motd: This is the Message of the Day banner. It is displayed when you first connect.

Configuration Example for Login Banner:


ciscoasa(config)# banner login                ** W A R N I N G **
ciscoasa(config)# banner login Unauthorized access prohibited. All access is
ciscoasa(config)# banner login monitored, and trespassers shall be prosecuted
ciscoasa(config)# banner login to the fullest extent of the law.

Related posts:

  1. Cisco ASA 5500 Firewall Configuration-User Interface and Access Modes
  2. Configuring AAA Accounting on Cisco ASA Firewall
  3. Configuring AAA Authentication on Cisco ASA Firewall

Tagged with:

Filed under: Cisco ASA Configuration

Like this post? Subscribe to my RSS feed and get loads more!