Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
391
Views
0
Helpful
3
Replies

Restrict group access to certain routers and switches ACS 4.1 solution eng.

navneetshah
Level 1
Level 1

‎03-20-2007 06:20 PM - edited ‎03-10-2019 03:03 PM

Have some network admins on remote site and need access to only certain routers. How do I configure this on my acs. I have already mapped cisco secure group with ad groups. How do I restrict cisco secure group access to only certain routers? Thanks guys.

Labels:
0 Helpful
3 Replies 3

darpotter
Level 5
Level 5

‎03-21-2007 12:57 AM

Very easy

In the ACS groups you want to control create Network Access Restrictions (NARs). These work by listing either permitted or denied devices (or device groups).

You probably need to be using "IP Based" NARs in which case set the type to be "permitted" then add the devices (or device groups) that are allowed for that group.

If you can see NARs in group setup, goto Interface Config and enable them.

0 Helpful

navneetshah
Level 1
Level 1
In response to somishra

‎03-21-2007 06:29 AM

Thanks. Worked.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents