I use ACSWin4.1/tacacs+ and I want to restrict shell-users to specific NAS without defining all the NAS on the ACS server. I have only defined very few NAS profiles and the <other>-NAS-profile on the ACS-server because I do not like to maintain thousands of NAS profiles on the ACS.
I get this working on the old CSU without problems by using NAS-names and wildcards (worked over configured hostname/DNS-name of the NAS) like NAS:"customer-.*" (Routername: customer-router1,..).
Is there any solution for ACSWin4.1 to get such a function or at least to enter ip/masks instead of defining every nas and making big NDGs.