Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2602
Views
5
Helpful
17
Replies

Use ISE to limit access to specific VRFs

Go to solution
Nerd_Herd
Level 1
Level 1

‎09-09-2024 08:32 AM

One of my clients would like to limit access of user to their specific VRFs. Since the VRFs span multiple devices its not possible to restrict by network access device, We're using TACACS so I tried to limit commands pertaining to other VRFs but all commands were blocked regardless of the argument given. Ex command = sh argument= ^vrf vrfname$ I used the ^$ symbols to get the start and stop of the string but it hit on every vrf. Any examples doing something would be appreciated.  

0 Helpful
17 Replies 17

Go to solution
MHM Cisco World
VIP
VIP
In response to Nerd_Herd

‎09-22-2024 09:59 PM - edited ‎09-22-2024 09:59 PM

If that So it will work' keep in mind dont select permit any command not list option.

Goodluck 

MHM

0 Helpful

Go to solution
Nerd_Herd
Level 1
Level 1
In response to MHM Cisco World

‎09-23-2024 06:16 AM

That's one of the things we discovered is that regex does not seem to work.

0 Helpful
Customers Also Viewed These Support Documents