10-26-2005 02:08 AM - edited 03-10-2019 02:21 PM
Is it possible to restrict a user account in ACS to be only allowed from a specified source address?
We use token cards for normal admin access but we have an automated script that backs up the configs and therefore uses a static account. We have implemented shell command authorization to limit potential exposure of this account becoming know but would also like to restrict this account to a specific source ip address to secure it further.
Thanks
10-26-2005 10:49 AM
Look under "Advanced Settings" in the "Per User Defined Network Access Restrictions" section and enter in the permitted IP address(es) for that account.
07-13-2010 12:03 PM
I tried the other guys response. It does not work for me. The advanced field does not populate with the ip's or groups. I created a network access filter as well and tried to apply but that did not work either. Anyone else have some suggestions. Hopefully in the 5 years since this question was posed someone figured it out
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide