[ChrisA]

We're running R62. Can the same userid be used for admin access to the firewall and SecureClient VPN access through the firewall to the network?

Some of our help desk personnel need to SmartView Monitor to do component checks of the firewall, but they are also SecureClient VPN users. Currently they are defined as Users with SecurID authentication, and they are using a generic administrator ID with read-only access to do the component checks. I want to get rid of this generic admin acct and create an admin account for each person, and ideally, have them use TACACS or RADIUS for access to the firewall (although I guess, SecurID would be okay, if that was the only way). Their userid is tied to SecurID, Radius, AD, etc, so I don't want to have to use a different acct name for their admin access (like user=joe, adminuser=ad-joe). I know I can't have the same userid in Users and in Administrators, but if I delete their user accts, and just define them as admins and add them to the VPN user groups, would this work? If not, is there a way to do what I'm proposing? I hope my explanation is clear. Thanks for your help.