Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
466
Views
5
Helpful
1
Replies

Restrict user to a specific source address

alittlefield
Level 1
Level 1

‎07-11-2006 08:01 AM - edited ‎03-10-2019 02:39 PM

Is it possible to restrict a user to a specific ip address via the acs appliance, running v3.3? I have a user that I want to allow but only want him sourcing from one address.

Labels:
0 Helpful
1 Reply 1

darpotter
Level 5
Level 5

‎07-12-2006 03:43 AM

Hi

Yes this is possible using Network Access Restrictions. Assuming that its a telnet login to an IOS device being authenticated by TACACS+

Either in the users group (or users own db record) you create an IP Based NAR. Make the type "Permint" then add a row:

AAA Client: All Clients

Port: *

Address:

Then add the row, you might see somethling like

All Client * 192.158.254.1

Hope that helps

Darran

Customers Also Viewed These Support Documents