Access level to a user on Network Device group

Answered Question
May 20th, 2008
User Badges:

Hi,


1. In ACS is it possible to give Readwrite access to an user when he logs in to a Network device group and readonly access when he logs in another network device group.


Thanks in advance


Correct Answer by Jagdeep Gambhir about 8 years 11 months ago

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis


Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.


http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029



Regards,

~JG

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Cowsika S Dasarathan Wed, 05/21/2008 - 08:13
User Badges:

In the access restrictions section located in group setup tab, for the specific user-group, you would be able to set the permission. There will be a section enable options wherein you can specify permission for each each device or each network device group.

Correct Answer
Jagdeep Gambhir Wed, 05/21/2008 - 18:00
User Badges:
  • Red, 2250 points or more

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis


Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.


http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029



Regards,

~JG

anva12345 Thu, 05/22/2008 - 04:22
User Badges:

Hi all,


We have successfully configured the User level access to different network device groups. this was accomplished by configuring different network device and Shell command authorization set.


Thanks for all your help.



Actions

This Discussion