Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACS Server Rights

hi,

i am setting up a Cisco ACS server with different privilage levels. I want to limit the set of commands under configuration mode for each different privilage level. As of now if i give conf t access, user can access all the config levekl commands, which i need to limit based on role basis. Could some one guide me how can i achieve this??

1 REPLY
Silver

Re: ACS Server Rights

Hi

For role based device admin control, you need to look at device command sets:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a0080205a4a.html#wp737624

Tasks involve

1) Defining Network Device Groups

2) Defining set of command sets

3) For each group map NDGs to command sets

Think of a command set as a set of permissions given to a particular role (group) for a specific resource (NDG)

Darran

135
Views
0
Helpful
1
Replies
CreatePlease to create content