Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Restricting Access to host on ACS

Hi,

I have ACS 4.0 running on Windows 2003.

ACS is mainly used to authenticate VPN users. Authentication on ACS is via local database and Windows Active Directory.

I need to understand how to restrict access to a host for VPN users on ACS Server

How to block Remote-desktop-Access to a group on ACS Server

3 REPLIES

Re: Restricting Access to host on ACS

Re: Restricting Access to host on ACS

You need to set up access policy in Administration control,

IP Address Filtering:

Click one of the following options:

Allow all IP addresses to connect. (default) No filtering on any IP address is performed when an administrator is accessing ACS remotely.

Allow only listed IP addresses to connect. Click to allow remote administration from only those workstations whose IP addresses fall within the range specified in IP Address Ranges. Workstations whose IP addresses are not within the specified range will not be able to access ACS remotely.

Reject connections from listed IP addresses. Click to filter out remote administration from the IP addresses specified in IP Address Ranges. Remote administration from workstations whose IP addresses do not fall within the specified range will be permitted.

Note: IP filtering operates upon the IP address received in the HTTP request from a remote administrator's web browser. If the browser is configured to use an HTTP proxy server or if the browser is run on a workstation behind a network device performing network address translation, IP filtering applies only to the IP address of the HTTP proxy server or the NAT device, respectively.

Regards,

~JG

Do rate helpful posts

New Member

Re: Restricting Access to host on ACS

Hi gambhir,

can you help with document link you follow to achieve this task.

156
Views
0
Helpful
3
Replies
CreatePlease login to create content