Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

CSACS limit which NAS users can log onto

Hello

I administer a CSACS server which is responsible for authentication of users for multiple networks and different NAS. I was wondering if there is any way in which I could limit which NAS a group of users is allowed to access (Log on to). Thanks very much

2 REPLIES
Cisco Employee

Re: CSACS limit which NAS users can log onto

Under the group, go to the Network Access Restrictions section and add the permitted/denied NAS's in there. Use * for port and address. This will permit/deny users within this group from authentication to the NAS's that you add to the NAR list.

New Member

Re: CSACS limit which NAS users can log onto

Hello

Well, I've tried to set this up, but for some reason, all users in any group are able to authenticate to any NAS. What I did was under the group I want to restrict I clicked on "Per User Defined NAR", then "Denied Calling...", then I select the NAS I want to deny the users access to, and under port and IP I just use * then I click submit and restart and for some reason, these users can still access the NAS I selected under AAA Client. Please help.

132
Views
0
Helpful
2
Replies
CreatePlease to create content