I know that it's possible to create different groups of devices in LMS through ACS, in such a way that a specific user cannot access to devices not assigned to him.
Is it possible to do it with a FreeRadius instead of a ACS?
No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.
No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.
Generally, I'd say no, RADIUS is not a direct substitute for TACACS. But in this case, you can try emulating that basic behavior with huntgroups/sqlhuntgroups in FreeRadius:
