Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS 5.x how do i limit who can authenticate to devices when using AD

Hi everybody,

I am deploying ACS 5.4 and i configured AD as an external database and configured authorization based on the group. but right now anybody can authemticate to the device using their AD creds, they get assigned to the deny all commad set, but i don't want them to be able to access the device, how can i limit that?

1 REPLY
Cisco Employee

ACS 5.x how do i limit who can authenticate to devices when usin

You need to change the result of the default authorization rule at:

Access Policies > Access Services > Default Device Admin > Authorization

Edit default rule. Select "DenyAccess" as the Shell Profile result and save

120
Views
0
Helpful
1
Replies
CreatePlease login to create content