https://community.cisco.com/t5/network-access-control/acs-4-1-dot1x-authentication-login-authentication/m-p/1033797#M364624 <HTML><HEAD></HEAD><BODY><P>What are your group settings for the ACS group that links to Active Directory?</P><P>Try changing the group settings of your Everyone Group that maps to your ACS group to not have Exec / Priv 15. </P><P>Add an additional mapping for AD_Admins to map to a different ACS group that has Exec and Priv 15. That should do it. </P><P></P><P>Hope this helps, rate if it does, </P><P>JB</P></BODY></HTML> Tue, 25 Nov 2008 20:37:47 GMT jpoplawski 2008-11-25T20:37:47Z https://community.cisco.com/t5/network-access-control/acs-4-1-dot1x-authentication-login-authentication/m-p/1033796#M364599 <P>Hi all,</P><P></P><P>I have created a document with my question. It includes network diagrams and switch configurations.</P><P></P><P>Thank you in advance!!!</P><P></P><P> </P><P></P> Sun, 10 Mar 2019 23:12:28 GMT https://community.cisco.com/t5/network-access-control/acs-4-1-dot1x-authentication-login-authentication/m-p/1033796#M364599 CerielRoland 2019-03-10T23:12:28Z https://community.cisco.com/t5/network-access-control/acs-4-1-dot1x-authentication-login-authentication/m-p/1033797#M364624 <HTML><HEAD></HEAD><BODY><P>What are your group settings for the ACS group that links to Active Directory?</P><P>Try changing the group settings of your Everyone Group that maps to your ACS group to not have Exec / Priv 15. </P><P>Add an additional mapping for AD_Admins to map to a different ACS group that has Exec and Priv 15. That should do it. </P><P></P><P>Hope this helps, rate if it does, </P><P>JB</P></BODY></HTML> Tue, 25 Nov 2008 20:37:47 GMT https://community.cisco.com/t5/network-access-control/acs-4-1-dot1x-authentication-login-authentication/m-p/1033797#M364624 jpoplawski 2008-11-25T20:37:47Z