NAR's ACS 4.2

Unanswered Question
Sep 22nd, 2009

I tried to make a NAR (IP based or CLI/DNIS based) to permit access from AAA client for ACS group 10.

AAA client must use group 20, but users still get authenticated in Group 10. Auth is ok, but overall process failed. Why does NAR work this way ? I thought that AAA client should "see" that it cannot use Group 10 and continues till Group 20.


  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jagdeep Gambhir Mon, 10/05/2009 - 05:34


YOu need to define NAR on group 20. If there is no NAR configured for the group , user can access whole network.



Do rate helpful posts


This Discussion



Trending Topics - Security & Network