Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
367
Views
0
Helpful
1
Replies

ACS, how to prevent web users access to firewall CLI?

andrea.meconi
Level 2
Level 2

‎01-29-2010 06:30 AM - edited ‎03-10-2019 04:54 PM

Hello.

I'm using a PIX with software version 6.3(5) wih the cut-through proxy feature. PIX queries a TACACS+ to authenticate web users.

I need a filter, NAR on ACS, to allow web users access Internet from a specific subnet only.

Actually, same web users credentials allow access to firewall CLI from different subnet!

Any idea?

Thanks.

Andrea

Labels:
0 Helpful
1 Reply 1

andrea.meconi
Level 2
Level 2

‎01-31-2010 05:37 AM

With a NAR filter based on IP addresses, I can confine access from a specific subnet only.

Regards.

Andrea

0 Helpful
Customers Also Viewed These Support Documents