Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
482
Views
0
Helpful
1
Replies

AAA - Privilege to set the password only

vinaymurthy
Level 1
Level 1

‎07-09-2005 10:35 PM - edited ‎03-10-2019 02:13 PM

Hi,

I have ACS version 3. We would like to create a priviliege for the user, who can be able to only reset the passwords for other user profiles. His access is limited only to reset the passwords & restricted to other super user priviliges.

Can any one kindly guide us how do i create the user with such a specific privileges in ACS.

Thanking You,

Regards

Vinay

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎07-11-2005 10:19 PM

Hmmm, you can't do that specifically within ACS. You can add an admin user under the Administration Control section, and you can certainly stop them from doing most things within ACS simply by not checking the appropriate check-boxes in the Administrator Privileges section. What you can't do is allow them to only change the password for a user, once they can add/edit a user they can change pretty much anything under that user.

You can limit the options that appear under a user profile though, by going under Interface Config - Advanced Options, and unchecking all the per-user attributes. Then under the admin privileges only check the "Add/Edit users in these groups" checkbox and that way they'll only be able to change the user permissions, not the group. By limiting what actually appears under the user you effectively limit what the admin can change.

0 Helpful
Customers Also Viewed These Support Documents