Giving staff enable access to some devices but not others
We have a working ACS 3.3 server and currently have TACACS+ configured on a few major switches. I have all of the network staff that need login/enable access to these switches in one ACS group called Netadmin. I now want to configure TACACS+ on a 6500 Firewall module so our firewall admin can do administration. I would like the firewall admin to only have login/enable access to the FWSM and not the switches. If I add the fw admin to the Netadmin group they will have access to everything, any ideas on how to solve this ?
Re: Giving staff enable access to some devices but not others
you need to create a new user group, say "FWadmin" and define the possibilities the FWadmin has. The device FWSM will then be included in the devices the netadmins are allowed to access and also the FWadmin is allowed to access.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...