Access level to a user on Network Device group

Answered Question
May 20th, 2008

Hi,

1. In ACS is it possible to give Readwrite access to an user when he logs in to a Network device group and readonly access when he logs in another network device group.

Thanks in advance

I have this problem too.
0 votes
Correct Answer by Jagdeep Gambhir about 8 years 6 months ago

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis

Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029

Regards,

~JG

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Cowsika S Dasarathan Wed, 05/21/2008 - 08:13

In the access restrictions section located in group setup tab, for the specific user-group, you would be able to set the permission. There will be a section enable options wherein you can specify permission for each each device or each network device group.

Correct Answer
Jagdeep Gambhir Wed, 05/21/2008 - 18:00

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis

Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029

Regards,

~JG

anva12345 Thu, 05/22/2008 - 04:22

Hi all,

We have successfully configured the User level access to different network device groups. this was accomplished by configuring different network device and Shell command authorization set.

Thanks for all your help.

Actions

This Discussion