Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

NAR's ACS 4.2

I tried to make a NAR (IP based or CLI/DNIS based) to permit access from AAA client 1.2.3.4 for ACS group 10.

AAA client 5.6.7.8 must use group 20, but users still get authenticated in Group 10. Auth is ok, but overall process failed. Why does NAR work this way ? I thought that AAA client 5.6.7.8 should "see" that it cannot use Group 10 and continues till Group 20.

Thanx.

1 REPLY

Re: NAR's ACS 4.2

Remco,

YOu need to define NAR on group 20. If there is no NAR configured for the group , user can access whole network.

Regards,

~JG

Do rate helpful posts

222
Views
0
Helpful
1
Replies
CreatePlease login to create content