Buy or Renew
Buy or Renew
Cisco Virtual Engineer generative AI bot now active in Wireless Discussion Forum. Learn more.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
404
Views
0
Helpful
1
Replies

NAR's ACS 4.2

remco.gussen
Level 1
Level 1

‎09-22-2009 04:56 AM - edited ‎07-03-2021 06:04 PM

I tried to make a NAR (IP based or CLI/DNIS based) to permit access from AAA client 1.2.3.4 for ACS group 10.

AAA client 5.6.7.8 must use group 20, but users still get authenticated in Group 10. Auth is ok, but overall process failed. Why does NAR work this way ? I thought that AAA client 5.6.7.8 should "see" that it cannot use Group 10 and continues till Group 20.

Thanx.

Labels:
0 Helpful
1 Reply 1

Jagdeep Gambhir
Level 10
Level 10

‎10-05-2009 05:34 AM

Remco,

YOu need to define NAR on group 20. If there is no NAR configured for the group , user can access whole network.

Regards,

~JG

Do rate helpful posts

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card