cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
646
Views
0
Helpful
1
Replies

Restrict Authentication to an AD group only

johnramz
Beginner
Beginner

CISCO ACS 5.3

Using external data identity store: AD

Hi all,

Is there a way to lock down the authentication to one AD group only ?

In access policies authorization can be restricted to a group only but I cannot find a way to do it with authentication. For example,anyone in AD can try to ssh or telnet to a network a have access to non-privilege/level 1 . I want to restrict it to the "CISCO admins" group that I already created

Any help is appreciated

John

1 Accepted Solution

Accepted Solutions

minkumar
Beginner
Beginner

Hi JOhn,

   Its not possible in Identity,You can only restrict the access in the AUthorization, By choosing the external groups:AD attribute from customize:

Best Regards:

Minakshi (Do rate the helpful posts )

View solution in original post

1 Reply 1

minkumar
Beginner
Beginner

Hi JOhn,

   Its not possible in Identity,You can only restrict the access in the AUthorization, By choosing the external groups:AD attribute from customize:

Best Regards:

Minakshi (Do rate the helpful posts )

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers