(I am a bit new to some of the IOS Security features)
Is it possible to "download" and ACL from TACACS+ (ACS 5.1) OR RADIUS AV Pairs ?
I know that the lists can be configured on ACS, but how are they applied on a IOS router ?
I have read about "lock and key ACL" , but the examples I have seen only use ACS to authenticate.
Also, if the lists can be downloaded, WHERE can they be applied ? Would it be limited to vty ?
What I ultimately want, is to have an ACL applied per user, when VPN users login to the crypto map / Tunnel interface.