cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1466
Views
0
Helpful
3
Replies

Access level to a user on Network Device group

anva12345
Level 1
Level 1

Hi,

1. In ACS is it possible to give Readwrite access to an user when he logs in to a Network device group and readonly access when he logs in another network device group.

Thanks in advance

1 Accepted Solution

Accepted Solutions

Jagdeep Gambhir
Level 10
Level 10

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis

Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029

Regards,

~JG

View solution in original post

3 Replies 3

In the access restrictions section located in group setup tab, for the specific user-group, you would be able to set the permission. There will be a section enable options wherein you can specify permission for each each device or each network device group.

Jagdeep Gambhir
Level 10
Level 10

Hi,

You need to set up Command Authorization Set on a per Network Device Group Basis

Assign a Shell Command Authorization Set on a per Network Device Group Basis-Associates particular shell command-authorization sets to be effective on particular NDGs.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/GrpMgt.html#wp480029

Regards,

~JG

Hi all,

We have successfully configured the User level access to different network device groups. this was accomplished by configuring different network device and Shell command authorization set.

Thanks for all your help.

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: