Hi
Yes this is possible using Network Access Restrictions. Assuming that its a telnet login to an IOS device being authenticated by TACACS+
Either in the users group (or users own db record) you create an IP Based NAR. Make the type "Permint" then add a row:
AAA Client: All Clients
Port: *
Address:
Then add the row, you might see somethling like
All Client * 192.158.254.1
Hope that helps
Darran