Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
617
Views
0
Helpful
2
Replies

RBAC requirement

Go to solution
jineshrd
Cisco Employee
Cisco Employee

‎08-26-2018 08:29 PM

RBAC requirement

 

1. Is it possible to implement some kind of virtual profile on the ACS so that if the request is from a certain set of ip addresses it redirects the request to a different profile in ACS. Physically it will be single appliance but virtually there will be 2; one for underlay AAA requirements and second for overall AAA requirements.

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
paul
Level 10
Level 10

‎08-27-2018 06:13 AM

I agree with Richard it sounds like you are asking put Policy Sets in ISE, but if you are asking about ACS then you are talking about Access Service definitions.  Both ISE and ACS allow you to carve up the configuration into different rule sets based on a wide variety of definitions (NAD type, NAD IPs, locations, SSID name, VPN tunnel group, RADIUS attributes, etc.)

 

View solution in original post

0 Helpful
2 Replies 2

Go to solution
RichardAtkin
Level 3
Level 3

‎08-27-2018 12:33 AM

Eeerm, what is it exactly that you’re trying to do (as opposed to how)? It sounds like you are describing ISE Policy sets, but it’s not clear.
0 Helpful

Go to solution
paul
Level 10
Level 10

‎08-27-2018 06:13 AM

I agree with Richard it sounds like you are asking put Policy Sets in ISE, but if you are asking about ACS then you are talking about Access Service definitions.  Both ISE and ACS allow you to carve up the configuration into different rule sets based on a wide variety of definitions (NAD type, NAD IPs, locations, SSID name, VPN tunnel group, RADIUS attributes, etc.)

 

0 Helpful
Customers Also Viewed These Support Documents