Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

AAA-ACS Server

Hi,I would like to limit a user to full privilege 15 rights on all switches but only read-only including show run on all routers. I am using Cisco ACS for NT and runnign version 12.0 ios on all cisco devices.

The problem is from what I can see, a user can only belong to 1 group on the ACS server so how do I do the above ?>

Any help is appreciated>

1 REPLY
New Member

Re: AAA-ACS Server

Hi,

Using ACS 3.1 you can use shared profile components to create a NAR (Network Access Restriction) and associate it with a NDG (network device group ) say of switches and that way you can apply various combinations of profiles for a single group of users.

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs31/acsuser/c.htm#224846

Thanks

Sujit

132
Views
0
Helpful
1
Replies
CreatePlease to create content