Controlling Access to devices using ACS

Unanswered Question
May 7th, 2007
User Badges:

I am using ACS 3.2 and on the NAR section,I have used a wildcard (*) to define all the network devices on my network.All my users are in one group. However,I have just realised there is the need for me to create another group and put some users in that group so they only have access to some routers and switches and not all as define by the wildcard.

How do I achieve this goal.?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
royalblues Mon, 05/07/2007 - 09:34
User Badges:
  • Green, 3000 points or more

Under NAR select the Per Group Defined Network Access Restrictions.

Select the AAA clients you want the group to access.

Use the wildcard mask in the port and the address field.

You can also group the devices which you want to give access under a seperate NDG and in the NAR give permission to only this NDG for the group. In this way you may need not add individual AAA clients

HTH, rate if it does



This Discussion