I have a Cisco 2901 Terminal server with AAA authentication via ACS server. I create two
accounts on the acs server, cciesec2011 and vendor. Both accounts can log into the Cisco
2901 Terminal Server without any issues. By the way, I am NOT using AAA authorization on
the Cisco Terminal Server. Once cciesec2011 or vendor accounts are authenticated, these
accounts can access all the async line on the Cisco Terminal Server.
Now I have a new requirements. I would like to allow cciesec2011, once this account is
successfully authenticated, this account has access to ALL async line on the Terminal
Server. The "vendor" account, I want to restrict this account access only to async
line 35 (there are 32 async lines available on the Cisco Terminal Server) and nothing
How can I accomplish without using AAA authorization on the Cisco Terminal Server?
Is it possible to use "privlege level" to accomplish this? if so, how?
Thanks in advance.