InformationAuthenticates ASDM users who access the security appliance over HTTP
By default, the enable password is used in combination with no username for http access. The aaa command is used to define the TACACS+/RADIUS authentication method. The local database can be mentioned as backup method to this primary method, failing that the ASDM will use the default administrator username and enabled password for authentication.
SolutionConfigure the aaa authentication for http using the TACACS+ server-group as primary method and the local database as backup method.
hostname(config)#aaa authentication http console <server-group_name> local
The http aaa authentication is disabled by default.