Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
584
Views
0
Helpful
1
Replies

ACS Device Groups Question

Go to solution
chrisayres
Level 1
Level 1

‎08-28-2007 02:41 AM - edited ‎03-10-2019 03:21 PM

Hi,

I have ACS setup with a device group that covers a large number of devices on my network and I apply rights to this as necessary.

But now I need to give a group of users access to a single device that is included within this group. I can't create a new device group to cover this single device as the address overlaps. Is there a way I do this without having to split up my existing device group into at least 3.

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
rochopra
Cisco Employee
Cisco Employee

‎08-28-2007 08:37 AM

Hi,

This can be achieved by using Network Access Restriction (NAR) in ACS.

By NAR you can Permit/deny access user/group based on Device/NDG/NAF.

Following link can give you more detail on it:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_white_paper09186a00801a8fd0.shtml

Note: if you don't get the option for NAR enable it from interface configuration.

~Rohit

View solution in original post

0 Helpful
1 Reply 1

Go to solution
rochopra
Cisco Employee
Cisco Employee

‎08-28-2007 08:37 AM

Hi,

This can be achieved by using Network Access Restriction (NAR) in ACS.

By NAR you can Permit/deny access user/group based on Device/NDG/NAF.

Following link can give you more detail on it:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_white_paper09186a00801a8fd0.shtml

Note: if you don't get the option for NAR enable it from interface configuration.

~Rohit

0 Helpful
Customers Also Viewed These Support Documents