Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Cisco Employee

ACS Applianc e4.0 User level AAA client Access

I have defined Network Device Group say ?Access.? where multiple AAA clients are grouped .

Ex:NDG is Access ?> All the Access devices are added as AAA Clients.Currenlty multiple users who belongs to ACCESS( Group name) are accessing all the AAA Clients..

Now If I want user ?A? to access only few of the AAA clients in the Access group.Is there any possibility of the same can be achieved??.

Note: I can?t add AAA client separately while its already associated to NDG.ie AAA client can be part of only one Group at any time..

2 REPLIES

Re: ACS Applianc e4.0 User level AAA client Access

You can create another group and add these users to it.

Then go to group setup.

Under Network Access Restrictions (NAR)

use the Per Group Defined Network Access Restrictions and permit only the devices they should be able to access.

HTH, rate if it does

Narayan

Cisco Employee

Re: ACS Applianc e4.0 User level AAA client Access

Hi,

Thanks for your response..

Creating another group for these users are not an issue..Since all the AAA clients are part of NDG, I willnot be able to pull out few AAA clients and associate to the new group. I have to see, If there is an option to permit individual aaa clients( all my aaa clinets are part of NDG).I will try with NAR and update here.

Thanks,

rkumares

250
Views
0
Helpful
2
Replies
CreatePlease to create content