Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
382
Views
0
Helpful
1
Replies

ACS Server Rights

tripat-singh
Level 1
Level 1

‎06-29-2006 06:08 AM - edited ‎03-10-2019 02:38 PM

hi,

i am setting up a Cisco ACS server with different privilage levels. I want to limit the set of commands under configuration mode for each different privilage level. As of now if i give conf t access, user can access all the config levekl commands, which i need to limit based on role basis. Could some one guide me how can i achieve this??

Labels:
0 Helpful
1 Reply 1

darpotter
Level 5
Level 5

‎06-29-2006 06:51 AM

Hi

For role based device admin control, you need to look at device command sets:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a0080205a4a.html#wp737624

Tasks involve

1) Defining Network Device Groups

2) Defining set of command sets

3) For each group map NDGs to command sets

Think of a command set as a set of permissions given to a particular role (group) for a specific resource (NDG)

Darran

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents