Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1424
Views
0
Helpful
2
Replies

ACS 3.1 group problem

flyan
Level 1
Level 1

‎05-28-2003 10:20 PM - edited ‎03-10-2019 07:19 AM

I created two groups on ACS 3.1. One is for wireless user ,another group is used for VPN client. I found that when I try to use VPN servece,I can also login with user ID belongs to wireless group and vice versa.

How can I isolate the user id of two groups ?

Labels:
0 Helpful
2 Replies 2

mhoda
Level 5
Level 5

‎05-29-2003 07:04 AM

Hi,

NAS (Network Access Restriction) Filter is the only options here. All you need to do is in your VPN group, just allow the AAA client for VPN device and deny rest of the NASes. Then in Wireless group, just allow the Wireless device as AAA client and deny the rest. Here are the links that will help you understanding and configuring NAR.

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a00800d9e6b.html#623269

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a0080102176.html

Thanks,

Mynul

0 Helpful

bhameed
Level 1
Level 1
In response to mhoda

‎01-10-2004 11:38 PM

Hi,

I am using ACS 3.2 with Win2K AD and group mappings to four AD user groups.

I had tried NAR feature but it does not seem to do any sort of filtering. I can still authenticate with users from other mapped groups to all the AAA clients even though the group NAR specifically permits only certain AAA clients and denies all other.

Any suggestions?

Regards

Biju

0 Helpful
Customers Also Viewed These Support Documents