Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1010
Views
0
Helpful
2
Replies

ACS 5.0 Limiting Access to specific device

Bruce Summers
Level 1
Level 1

‎11-04-2010 03:30 PM - edited ‎03-10-2019 05:33 PM

Can anybody point me in the right direction...

I'm running ACS5.0 and i want to take 10 users and give them specific show command capability to 4 specific switches without affecting any other policy that I have in place presently and not let them view any other device in the network...

Any help would be greatly appreciated...

Bruce

Labels:
0 Helpful
2 Replies 2

Bruce Summers
Level 1
Level 1

‎11-04-2010 03:53 PM

Sorry, I didnt mention I'm running ACS 5.0 on an appliance...Not the windows version....

Bruce

0 Helpful

jedubois
Cisco Employee
Cisco Employee
In response to Bruce Summers

‎11-05-2010 10:35 AM

Bruce,

     There are a couple of different ways you can accomplish this.  You can put those 4 specific devices in an NDG then as part of you authorization rule only allow those 10 users to access that NDG.  On your rules page will can use the customize button on the bottom right of the rules page to add NDG:Device Type or NDG:Device Location or other NDG to your page.  Alternatively you could also use a compound condition rule and check for NDG and group mapping.  You will probably have to create a second rule to deny those users from the rest of your devices.

--Jesse

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents