FortiNAC
NOTE: FortiNAC is now named FortiNAC-F. For post-9.4 articles, see FortiNAC-F. FortiNAC is a zero-trust network access solution that provides users with enhanced visibility into the Internet of Things (IoT) devices on their enterprise networks.
cmaheu
Staff
Staff
Article Id 197942
Description
An SSH session to perform user table evaluation is created for each new VPN session.  Customers have reported periodic SSH lockouts on the ASA when the ASA's Allowed Access List for SSH configured to be open (0.0.0.0).   

Scope
Version: 8.x

Solution
Configure the SSH Allowed Access List to only include those subnets requiring access, including the appliance's eth0 subnet.





ID 4171753

Related Articles

Technical Note: Restarting services can generate large number of SSH sessions with ASA

Contributors