I have a CSM server currtnely authenticating locally that I wish to change to authenticate against a Cisco ACS server.
The ACS server has the schema loaded for CSM. And the apps are all registered (Via the CiscoWorks config panel on the CSM server).
I have a user that's a member of a group that has SuperUser access or Systems Administrator access (Whichever is highest) of all the registered apps.
But when the user logs into CSM I can only view SOME of the firewall policies... I get 'You are not Authorized to view this policy' when trying to view SOME of the Access Rules policies...
Where exactly is this set? I can't find anywhere to even specify who has access to which policy.
Also the user can't see individual devices in the device view. And it would appear that this is somehow the cause of not being able to view SOME of the policies... Where a policy has been assigned to a device, the user can't see it.
Excatly what privileges does an ACS authenticated user require if SuperUser isn't enough?