topic CSACS limit which NAS users can log onto in Network Access Control

CSACS limit which NAS users can log onto

jasonhumes — Sun, 10 Mar 2019 14:27:47 GMT

Hello

I administer a CSACS server which is responsible for authentication of users for multiple networks and different NAS. I was wondering if there is any way in which I could limit which NAS a group of users is allowed to access (Log on to). Thanks very much

Re: CSACS limit which NAS users can log onto

gfullage — Fri, 29 Aug 2003 00:30:59 GMT

Under the group, go to the Network Access Restrictions section and add the permitted/denied NAS's in there. Use * for port and address. This will permit/deny users within this group from authentication to the NAS's that you add to the NAR list.

Re: CSACS limit which NAS users can log onto

jasonhumes — Wed, 03 Sep 2003 13:33:45 GMT

Hello

Well, I've tried to set this up, but for some reason, all users in any group are able to authenticate to any NAS. What I did was under the group I want to restrict I clicked on "Per User Defined NAR", then "Denied Calling...", then I select the NAS I want to deny the users access to, and under port and IP I just use * then I click submit and restart and for some reason, these users can still access the NAS I selected under AAA Client. Please help.