01-06-2011 01:53 AM - edited 03-10-2019 05:41 PM
I want to use TACACS to control access to all our Cisco switches and routers. I have an Cisco ACS device that can be used to centrally manage engineer accounts. The ACS server is, however, also used to store our corporate users VPN accounts.
Can I limit access to the routers and switches to only users in the Engineers group on the ACS server?
Solved! Go to Solution.
01-06-2011 01:58 AM
Hello,
If you are using ACS 4.x, limiting access through Network Access Restrictions (NARs) might help you out:
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml
Let me know if this helps, or alternatively if you are using ACS 5 (in which case the scenario is a little bit different).
Regards,
Fede
--
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
01-06-2011 01:58 AM
Hello,
If you are using ACS 4.x, limiting access through Network Access Restrictions (NARs) might help you out:
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml
Let me know if this helps, or alternatively if you are using ACS 5 (in which case the scenario is a little bit different).
Regards,
Fede
--
If this helps you and/or answers your question please mark the question as "answered" and/or rate it, so other users can easily find it.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide