on ACS Server ; under download ACL

Thats cool, but which device do you want to download the ACLs to? The AAA Client? Router, ASA?

Regards

Farrukh

Thanks ...

Its Router and ASA

This is the link for the IOS:

http://www.cisco.com/en/US/products/sw/secursw/ps1018/products_tech_note09186a0080094eb0.shtml

Here is the link for the ASA:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_configuration_example09186a00807349e7.shtml#configure-radius

http://www.cisco.com/application/pdf/paws/8527/atp52.pdf

(Pg 14 and onwards)

Regards

Farrukh

Thanks Happs.

But this is not my requirement.

I want to allow specific host for a specific user by using ACL on ACS Box.

Let me give you an example :-

A remote-access user gets authenticated via ACS and should be allowed to access a specific host on the network. ( Only allowed to access Data-Server on the network i.e host IP 192.168.1.150 )

I Guess to get this working we need to create an ACL on ACS-BOX and apply to user-profile..

How to create ACL to permit DATA-Server Host only and deny all

===============================

permit host 192.168.1.150

deny ip host any any

===============================