Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
846
Views
0
Helpful
2
Replies

Restricting a user to a source IP address

stretchlad
Level 1
Level 1

‎10-26-2005 02:08 AM - edited ‎03-10-2019 02:21 PM

Is it possible to restrict a user account in ACS to be only allowed from a specified source address?

We use token cards for normal admin access but we have an automated script that backs up the configs and therefore uses a static account. We have implemented shell command authorization to limit potential exposure of this account becoming know but would also like to restrict this account to a specific source ip address to secure it further.

Thanks

Labels:
0 Helpful
2 Replies 2

akemp
Level 5
Level 5

‎10-26-2005 10:49 AM

Look under "Advanced Settings" in the "Per User Defined Network Access Restrictions" section and enter in the permitted IP address(es) for that account.

0 Helpful

JimBeam01
Level 1
Level 1

‎07-13-2010 12:03 PM

I tried the other guys response. It does not work for me. The advanced field does not populate with the ip's or groups. I created a network access filter as well and tried to apply but that did not work either. Anyone else have some suggestions. Hopefully in the 5 years since this question was posed someone figured it out

0 Helpful
Customers Also Viewed These Support Documents