Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

ACS 5.0 User creation

Hello,

When I create a user in the ACS 5.0 for VPN authentication, I don't find the same functionalities as the Version 4.2.

I want to know how can I assign IP addresses for my users (ACS 5.0).

Please view the Attached file (With ACS V4.2 I tested that, and it's ok, but not with ACS 5.0.

Best regards/.

1 REPLY
Gold

Re: ACS 5.0 User creation

It is possible to create user defined attributes values which can be entered as part of the user definition and then utilized in either policy conditions and/or values returned in authorization. This is a generic mechanism to meet the use case you define

This can be achieved as follows

1) Define an identity attribute of type IP address (under System Administration->Configuration->Dictionaries->Internal)

2) Define users and enter their assigned IP address to this attribute

3) Define an authorization profile that uses the define the IP address from the user record. Enter a manually defined attribute, Framed-IP-Address with Dynamic value selected as the IP address attribute in Internal Users dictionary

4) Select the authorization profile as result in authorization policy

179
Views
0
Helpful
1
Replies
CreatePlease to create content