Cisco Community
English
Register
We're here for you! LEARN about free offerings and business continuity best practices during the COVID-19 pandemic
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
4293
Views
0
Helpful
2
Replies
Highlighted
Steven Chua
Beginner
Beginner
‎08-01-2012 08:16 PM
‎08-01-2012 08:16 PM

Cisco Prime Device Access Control via TACACS Authentication

Hi,

I  have deployed a Cisco Prime Lan Management Server and I have configure  for TACACS authentication and authorization for users accessing the  Prime box via Cisco ACSv5.2. As I have two groups of users, I would like  to restrict the access right to the Cisco Prime for these two groups of  users (access rights of Helpdesk for one group and Super Admin for  another group). I am able to authencated successfully via the Cisco  ACSv5.2 however I am always seem to be given the rights of Helpdesk  only.

Please advice.

Many Thanks in Advance.

Rgds

0 Helpful
Reply
1 ACCEPTED SOLUTION

Accepted Solutions
Highlighted
Vinod Arya
Cisco Employee
Cisco Employee
‎08-01-2012 09:10 PM
‎08-01-2012 09:10 PM

Cisco Prime Device Access Control via TACACS Authentication

With Prime series or LMS 4.x onwards, any PAM (pluggable Auth. Module) provides only authentication to users. for Authorization on what access one should have the user should be locally configured on the LMS with required Authorization. Those users who are in AAA server will be given bydefault help desk user acess.

For more details on this, see :

http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.2/user/guide/admin/security.html#wp1167300

In short, add users in LMS whom you want to grand super admin access with same priv's.

-Thanks

-Thanks Vinod **Rating Encourages contributors, and its really free. **

View solution in original post

0 Helpful
Reply
2 REPLIES 2
Highlighted
Vinod Arya
Cisco Employee
Cisco Employee
‎08-01-2012 09:10 PM
‎08-01-2012 09:10 PM

Cisco Prime Device Access Control via TACACS Authentication

With Prime series or LMS 4.x onwards, any PAM (pluggable Auth. Module) provides only authentication to users. for Authorization on what access one should have the user should be locally configured on the LMS with required Authorization. Those users who are in AAA server will be given bydefault help desk user acess.

For more details on this, see :

http://www.cisco.com/en/US/docs/net_mgmt/ciscoworks_lan_management_solution/4.2/user/guide/admin/security.html#wp1167300

In short, add users in LMS whom you want to grand super admin access with same priv's.

-Thanks

-Thanks Vinod **Rating Encourages contributors, and its really free. **

View solution in original post

0 Helpful
Reply
Highlighted
Steven Chua
Beginner
Beginner
‎08-02-2012 12:26 AM
‎08-02-2012 12:26 AM

Cisco Prime Device Access Control via TACACS Authentication

Hi Vinod,

Thanks very much for the information.

0 Helpful
Reply
Latest Contents
Establishing connection with a remote network not working
Created by zivx on 05-30-2020 02:56 PM
4
0
4
0
I tried to setup a virtual environment with 2960 switches and 2911 Router. In one part of the network where I connected PCs directly to the 2911 Router, I was able to communicate to the attached devices, having configured static route. In the th... view more
New software-defined solutions for segmentation and control
Created by gajewell on 05-27-2020 06:17 PM
0
0
0
0
Network Insider Live Webinar Tuesday, June 23, 2020 10:00 am Pacific Time (San Francisco, GMT-08:00) Learn how Software-Defined Access and new innovations in Cisco DNA Center provide a better way to control your network. We will explore new enhancements, ... view more
Meet the Authors FAQ- Evolution of Overlay Networking
Created by ciscomoderator on 05-26-2020 02:44 PM
1
5
1
5
This event had place on Thursday 30, April 2020 at 10hrs PDT Introduction Featured Author Victor Moreno is a Distinguished Engineer at Cisco Systems responsible for the definition of next generation network architectures. Victor has over 20 years of i... view more
Meet the Authors video- Network Programmability with Joe Cla...
Created by ciscomoderator on 05-26-2020 02:32 PM
1
0
1
0
Meet the Authors Event - Network Programmability with Joe Clarke (Live event – Wednesday, May 21st, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 7:00 p.m. Paris) This event had place on Thursday 21st, May 2020 at 10hrs PDT  In this session,... view more
Meet the Authors Slides- Network Programmability with Joe Cl...
Created by ciscomoderator on 05-26-2020 02:22 PM
0
0
0
0
Meet the Authors Slides - Network Programmability with Joe Clarke (Live event – Wednesday, May 21st, 2020 at 10:00 a.m. Pacific / 1:00 p.m. Eastern / 7:00 p.m. Paris) This event had place on Thursday 21st, May 2020 at 10hrs PDT  In this session,... view more
CreatePlease to create content
Discussion
Blog
Document
Video
Content for Community-Ad