Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Restrict group access to certain routers and switches ACS 4.1 solution eng.

Have some network admins on remote site and need access to only certain routers. How do I configure this on my acs. I have already mapped cisco secure group with ad groups. How do I restrict cisco secure group access to only certain routers? Thanks guys.

3 REPLIES
Silver

Re: Restrict group access to certain routers and switches ACS 4.

Very easy

In the ACS groups you want to control create Network Access Restrictions (NARs). These work by listing either permitted or denied devices (or device groups).

You probably need to be using "IP Based" NARs in which case set the type to be "permitted" then add the devices (or device groups) that are allowed for that group.

If you can see NARs in group setup, goto Interface Config and enable them.

Cisco Employee

Re: Restrict group access to certain routers and switches ACS 4.

New Member

Re: Restrict group access to certain routers and switches ACS 4.

Thanks. Worked.

125
Views
0
Helpful
3
Replies
CreatePlease to create content