08-01-2008 02:08 PM - edited 03-10-2019 04:00 PM
We have 350 +/- devices attached to our ACS. The devices comprise approximately 65 remote locations. Currently all devices are in one NDG. We have 3 network engineers that will need access to all devices. Each remote site with network devices has 1 tech support person that needs read only access to their network devices only.
I have figured out how to give them read only access, but I am not sure about the best way to limit their access to the devices they should have and not the rest of the devices on the network.
i.e network engineers need access to all devices, user 1 needs access ONLY to device A B & C, User 2 needs access to devices D, E, & F.
Thanks in advance for suggestions
08-02-2008 06:25 AM
For this you need to set up a feature called network access restriction (NAR)
Please see this link,
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_white_paper09186a00801a8fd0.shtml
Regards,
~JG
Do rate helpful posts
08-04-2008 08:12 AM
Hi,
For that you have to create NDG Groups first Sitewise.
To Enable to NDG Group Setup
Goto>>>>>>>>Interface Configuration>..
Under that click on the "Advanced Options"
check the box :Network Device Groups
Now click on the "Network Configuration" tab
If you click the Add entry:
You can find the difference like it will promt you to
Network Device Group Name :
Shared Secret :
Give the Network Device Group Name as your Remote Site.
Add the Network Device under the site your are added
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: