https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805028#M228812 <HTML><HEAD></HEAD><BODY><P> Hi Nicolas, </P><P></P><P>Sorry for late reply. </P><P></P><P>I just read your reply and you made quite easier for me to go further and understand this.</P></BODY></HTML> Tue, 20 Sep 2011 06:03:35 GMT vinodjad1234 2011-09-20T06:03:35Z https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805024#M228682 <P>Hi Experts,</P><P></P><P>I have task of configuring TACAC with different user level for all routers and switches,</P><P></P><P>To elaborate more, I have engineer , analyst and site engineers so I want to configure centralized tacac authentication with different privilage levels for different categories of network engg. , analyst, site engineer, </P><P></P><P>can anybody explain about this how to proceed with ACS 5.2 and what configuration is required in device level. </P><P></P><P></P><P>I am perticularly looking for acs 5.2 configuration steps. </P><P></P><P>Looking forward to get reply. </P> Mon, 11 Mar 2019 01:24:08 GMT https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805024#M228682 vinodjad1234 2019-03-11T01:24:08Z https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805025#M228751 <HTML><HEAD></HEAD><BODY><P>Assigning different privileges level to different user types is easy.</P><P>Do these privileges also vary depending on the type of device accessed ?&nbsp; Can you be more specific ?</P><P>What you ask seem to be just indicated in the acs 5.2 user guide, so I'm not sure if there is anything tricky in your question that I missed.</P></BODY></HTML> Wed, 14 Sep 2011 18:07:55 GMT https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805025#M228751 Nicolas Darchis 2011-09-14T18:07:55Z https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805026#M228773 <HTML><HEAD></HEAD><BODY><P> Hi Nicolas, </P><P></P><P>Thanks for your reply. </P><P></P><P>We have all distribution swithces ( L3 switch ) and later all routers ( CE routers ) to configured with tacac. </P><P></P><P>I just need steps to be followed in ACS configuration for this task .</P></BODY></HTML> Thu, 15 Sep 2011 06:46:48 GMT https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805026#M228773 vinodjad1234 2011-09-15T06:46:48Z https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805027#M228790 <HTML><HEAD></HEAD><BODY><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/policy_mod.html#wp1076053">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/policy_mod.html#wp1076053</A></P><P></P><P>In "default device admin" simply create authorization rules.</P><P>They should look like "if user type/group = site engineer then assign shell profile X"</P><P>You then have to define the shell profile in policy elements and put in there all the privileges of your site engineer.</P><P>And so on for the other roles</P></BODY></HTML> Thu, 15 Sep 2011 08:59:14 GMT https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805027#M228790 Nicolas Darchis 2011-09-15T08:59:14Z https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805028#M228812 <HTML><HEAD></HEAD><BODY><P> Hi Nicolas, </P><P></P><P>Sorry for late reply. </P><P></P><P>I just read your reply and you made quite easier for me to go further and understand this.</P></BODY></HTML> Tue, 20 Sep 2011 06:03:35 GMT https://community.cisco.com/t5/network-access-control/network-devices-access-restriction-configuration-with-user-level/m-p/1805028#M228812 vinodjad1234 2011-09-20T06:03:35Z