VLAN ID assignment with privileges

Unanswered Question
Jul 8th, 2009
User Badges:

Hi,


I was wondering if it is possible to give a privilege access and let a person only put a specific vlan ID on the switch port but not all VLAN IDs available on the switch.

This is because I had DMZs on the LAN switch, and I don't want to give access to techs to put the VLAN ID of a DMZ, only they can change on LAN VLAN ID.

THanks !

Martin

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Richard Burts Wed, 07/08/2009 - 14:16
User Badges:
  • Super Silver, 17500 points or more
  • Hall of Fame,

    Founding Member

  • Cisco Designated VIP,

    2017 LAN, WAN

Martin


I do not know of any way to give a user privilege access to change VLAN ID and then to restrict which VLAN that they change.


HTH


Rick

wandering_997 Wed, 07/08/2009 - 17:40
User Badges:

Hi Martin,


I agree with Rick.


It seems hardly to implement it if you only presume upon the LAN switch itself.


I suppose set allowed vlan on trunk links to the DMZ LAN switch maybe can archieve your object. But the precondition is the VLANs must not be used at all.


Or depend on some other network management application which can be set permission by more specific condition, such as vlan id.



Hope to help.


Wandering


martin_mirko Thu, 07/09/2009 - 06:26
User Badges:

Thanks a lot for your answers, I believed I can't like you, but this parser that Andres proposed could work, I didn't know it before. I will check that info.


Thanks a lot again !

Martin

martin_mirko Thu, 07/09/2009 - 06:41
User Badges:

Unfortunately, it is only supported from 12.4 on routers but not for switches ;)


Thanks a lot anyway,

Martin

Actions

This Discussion