VLAN ID assignment with privileges

Unanswered Question
Jul 8th, 2009

Hi,

I was wondering if it is possible to give a privilege access and let a person only put a specific vlan ID on the switch port but not all VLAN IDs available on the switch.

This is because I had DMZs on the LAN switch, and I don't want to give access to techs to put the VLAN ID of a DMZ, only they can change on LAN VLAN ID.

THanks !

Martin

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Richard Burts Wed, 07/08/2009 - 14:16

Martin

I do not know of any way to give a user privilege access to change VLAN ID and then to restrict which VLAN that they change.

HTH

Rick

wandering_997 Wed, 07/08/2009 - 17:40

Hi Martin,

I agree with Rick.

It seems hardly to implement it if you only presume upon the LAN switch itself.

I suppose set allowed vlan on trunk links to the DMZ LAN switch maybe can archieve your object. But the precondition is the VLANs must not be used at all.

Or depend on some other network management application which can be set permission by more specific condition, such as vlan id.

Hope to help.

Wandering

martin_mirko Thu, 07/09/2009 - 06:26

Thanks a lot for your answers, I believed I can't like you, but this parser that Andres proposed could work, I didn't know it before. I will check that info.

Thanks a lot again !

Martin

martin_mirko Thu, 07/09/2009 - 06:41

Unfortunately, it is only supported from 12.4 on routers but not for switches ;)

Thanks a lot anyway,

Martin

Actions

This Discussion