NAR's ACS 4.2

Unanswered Question
Sep 22nd, 2009
User Badges:

I tried to make a NAR (IP based or CLI/DNIS based) to permit access from AAA client 1.2.3.4 for ACS group 10.

AAA client 5.6.7.8 must use group 20, but users still get authenticated in Group 10. Auth is ok, but overall process failed. Why does NAR work this way ? I thought that AAA client 5.6.7.8 should "see" that it cannot use Group 10 and continues till Group 20.


Thanx.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Jagdeep Gambhir Mon, 10/05/2009 - 05:34
User Badges:
  • Red, 2250 points or more

Remco,

YOu need to define NAR on group 20. If there is no NAR configured for the group , user can access whole network.


Regards,

~JG


Do rate helpful posts

Actions

This Discussion

 

 

Trending Topics - Security & Network