cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
360
Views
0
Helpful
2
Replies

Best way to seperate devices using ACS

lundvall
Level 1
Level 1

We have 350 +/- devices attached to our ACS. The devices comprise approximately 65 remote locations. Currently all devices are in one NDG. We have 3 network engineers that will need access to all devices. Each remote site with network devices has 1 tech support person that needs read only access to their network devices only.

I have figured out how to give them read only access, but I am not sure about the best way to limit their access to the devices they should have and not the rest of the devices on the network.

i.e network engineers need access to all devices, user 1 needs access ONLY to device A B & C, User 2 needs access to devices D, E, & F.

Thanks in advance for suggestions

2 Replies 2

Jagdeep Gambhir
Level 10
Level 10

For this you need to set up a feature called network access restriction (NAR)

Please see this link,

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_white_paper09186a00801a8fd0.shtml

Regards,

~JG

Do rate helpful posts

chaitu_kranthi
Level 1
Level 1

Hi,

For that you have to create NDG Groups first Sitewise.

To Enable to NDG Group Setup

Goto>>>>>>>>Interface Configuration>..

Under that click on the "Advanced Options"

check the box :Network Device Groups

Now click on the "Network Configuration" tab

If you click the Add entry:

You can find the difference like it will promt you to

Network Device Group Name :

Shared Secret :

Give the Network Device Group Name as your Remote Site.

Add the Network Device under the site your are added

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: