cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
574
Views
0
Helpful
1
Replies

Router Access for Specific ACS Group

tobin_jim
Level 1
Level 1

I want to use TACACS to control access to all our Cisco switches and routers. I have an Cisco ACS device that can be used to centrally manage engineer accounts. The ACS server is, however, also used to store our corporate users VPN accounts.

Can I limit access to the routers and switches to only users in the Engineers group on the ACS server?

1 Accepted Solution

Accepted Solutions

Federico Ziliotto
Cisco Employee
Cisco Employee

Hello,

If you are using ACS 4.x, limiting access through Network Access Restrictions (NARs) might help you out:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml

Let me know if this helps, or alternatively if you are using ACS 5 (in which case the scenario is a little bit different).

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

View solution in original post

1 Reply 1

Federico Ziliotto
Cisco Employee
Cisco Employee

Hello,

If you are using ACS 4.x, limiting access through Network Access Restrictions (NARs) might help you out:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_tech_note09186a0080858d3c.shtml

Let me know if this helps, or alternatively if you are using ACS 5 (in which case the scenario is a little bit different).

Regards,

Fede

--

If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.