https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615035#M87329 <HTML><HEAD></HEAD><BODY><P>Finally I went and created a CSA Client Admin list and its opposite which I called CSA Users and then made 2 UI rules. One that allows full access and another that does not allow any user interaction. Seemed to work for me.</P></BODY></HTML> Wed, 21 Mar 2007 21:13:43 GMT shank15217 2007-03-21T21:13:43Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615031#M87320 <P>I am running CSA on a number of workstations in live mode but I wanted to give certain users (techs) privileged access so i created a user state group with those users and when those users log into a machine with csa they are able to see the UI and disable/enable csa to install applications. For other users the UI rule is not enabled so not its viewable on their desktop. It seems to be working however the UI frequently disappears if I make a rule change or create a new rule. Is this a good way or am I hacking it in a way it shouldn't be used. Right now the techs have to reboot the machine and relog into their accounts to see the CSA client icon. Seems to me there should be a better way.</P> Sun, 10 Mar 2019 10:30:06 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615031#M87320 shank15217 2019-03-10T10:30:06Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615032#M87323 <HTML><HEAD></HEAD><BODY><P>Sounds like a good way. Be sure there are no other Agent UI Control rules that might be stepping on the one you created. </P><P></P><P>Also, the Agent UI will disappear if there are no Agent UI Control rules applied to the host.</P><P></P><P>Tom</P></BODY></HTML> Wed, 07 Mar 2007 18:46:03 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615032#M87323 tsteger1 2007-03-07T18:46:03Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615033#M87325 <HTML><HEAD></HEAD><BODY><P>ah ok that helps a lot. </P></BODY></HTML> Thu, 08 Mar 2007 19:05:17 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615033#M87325 shank15217 2007-03-08T19:05:17Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615034#M87327 <HTML><HEAD></HEAD><BODY><P>Also keep in mind you can turn off CSA via command line and by disabling the service.</P><P></P><P>I don't know if you want your tec to know this or not.</P></BODY></HTML> Thu, 08 Mar 2007 20:32:13 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615034#M87327 TradeSecrets 2007-03-08T20:32:13Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615035#M87329 <HTML><HEAD></HEAD><BODY><P>Finally I went and created a CSA Client Admin list and its opposite which I called CSA Users and then made 2 UI rules. One that allows full access and another that does not allow any user interaction. Seemed to work for me.</P></BODY></HTML> Wed, 21 Mar 2007 21:13:43 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615035#M87329 shank15217 2007-03-21T21:13:43Z https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615036#M87334 <HTML><HEAD></HEAD><BODY><P>Cool, glad to hear it.</P><P></P><P>Tom</P></BODY></HTML> Wed, 21 Mar 2007 22:21:28 GMT https://community.cisco.com/t5/network-security/csa-client-access-rule/m-p/615036#M87334 tsteger1 2007-03-21T22:21:28Z