We are trying to work out Lock & Key for our PIX 5.5e using "Virtual Telnet". We have two sites in question ie. two firewalls.
For this the ACS is playing up as for site number 1, it's granting access when any NAR is assigned to the user. For site number 2, it's not granting access with any NAR BUT one that contains an NDG that has no entry for any IP /host.
No access for both when no NAR is assigned.
Can someone please solve the mystery? We want to select the NAR that contains particular NDG for particular site IPs/hosts.