Controlling Access to devices using ACS

Unanswered Question
May 7th, 2007

I am using ACS 3.2 and on the NAR section,I have used a wildcard (*) to define all the network devices on my network.All my users are in one group. However,I have just realised there is the need for me to create another group and put some users in that group so they only have access to some routers and switches and not all as define by the wildcard.

How do I achieve this goal.?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Mon, 05/07/2007 - 09:34

Under NAR select the Per Group Defined Network Access Restrictions.

Select the AAA clients you want the group to access.

Use the wildcard mask in the port and the address field.

You can also group the devices which you want to give access under a seperate NDG and in the NAR give permission to only this NDG for the group. In this way you may need not add individual AAA clients

HTH, rate if it does



This Discussion