topic AAA Authorization help in Network Access Control https://community.cisco.com/t5/network-access-control/aaa-authorization-help/m-p/614136#M421589 <P>I have configured authentication for the outside users to connect to my servers using the following sample acl</P><P></P><P>access-list 110 permit tcp any host 10.10.10.3 eq http</P><P>access-list 110 permit tcp any host 10.10.10.4 eq http</P><P>access-list 110 permit tcp any host 10.10.10.5 eq http</P><P></P><P>aaa authentication match 110 outside TACACS+</P><P></P><P>Now for authorizing them do i have to create another set of acls or can i just use the existing acls and write </P><P></P><P>aaa authorization match 110 outside TACACS+</P><P></P><P>Is there anything else i should do on the AAA-Server for authorization?</P><P></P><P>Thanks</P><P></P><P>Jason</P><P></P> Sun, 10 Mar 2019 21:59:38 GMT jasonbailey80 2019-03-10T21:59:38Z AAA Authorization help https://community.cisco.com/t5/network-access-control/aaa-authorization-help/m-p/614136#M421589 <P>I have configured authentication for the outside users to connect to my servers using the following sample acl</P><P></P><P>access-list 110 permit tcp any host 10.10.10.3 eq http</P><P>access-list 110 permit tcp any host 10.10.10.4 eq http</P><P>access-list 110 permit tcp any host 10.10.10.5 eq http</P><P></P><P>aaa authentication match 110 outside TACACS+</P><P></P><P>Now for authorizing them do i have to create another set of acls or can i just use the existing acls and write </P><P></P><P>aaa authorization match 110 outside TACACS+</P><P></P><P>Is there anything else i should do on the AAA-Server for authorization?</P><P></P><P>Thanks</P><P></P><P>Jason</P><P></P> Sun, 10 Mar 2019 21:59:38 GMT https://community.cisco.com/t5/network-access-control/aaa-authorization-help/m-p/614136#M421589 jasonbailey80 2019-03-10T21:59:38Z Re: AAA Authorization help https://community.cisco.com/t5/network-access-control/aaa-authorization-help/m-p/614137#M421591 <HTML><HEAD></HEAD><BODY><P>Hi Jason,</P><P></P><P>You can use the same ACL for authorization. You will not have to do anything on ACS unless you need to push ACLs for the user.</P><P></P><P>Regards,</P><P>Vivek</P></BODY></HTML> Mon, 19 Feb 2007 17:04:15 GMT https://community.cisco.com/t5/network-access-control/aaa-authorization-help/m-p/614137#M421591 Vivek Santuka 2007-02-19T17:04:15Z