I am trying to understand how to configre a more granular access to the network via group network access restriction.
Basically, we have several groups set up, but I think they are all allowed access to everything.
I have remote users that work for the company that need access to network resources, but none of the network gear.
we also have third parties that have access to Firewalls for management and another third party that has access to routers and switches.
I need to make sure everything is controlled and they only have access to what we want to allow.
What does "Shared Network Access Restictions" allow you to do?
I am unable to view anything in "View IP NAR" after selecting the
"Only allow network access when"
In Per Group Defined Network Access Restrictions, I have the checkmark on
"Define IP Based access restrictions"
"Permitted Calling/Point of access Locations"
Do you set one as permit and the other as deny?
What if you want to allow access to servers, do you have to add every port in the box shown?
If Network Access Restrictions are not configured, does the user in that group have access to everything?