Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1049
Views
0
Helpful
2
Replies

Problems with IAS

teller123
Level 1
Level 1

‎11-09-2007 03:44 PM

I have configured my cisco devices to authenticate administrators againts active directory using IAS. But I would like IAS to publish the appropriate privileges at logon.

"privilege exec level 7 write memory"

I would also like to centralize my access-classes the same way.

Labels:
0 Helpful
2 Replies 2

Danilo Dy
VIP Alumni
VIP Alumni

‎11-09-2007 10:05 PM

Hi,

Have you tried this?

- Fire up IAS

- Select "Remote Access Policies"

- Right-click the policy

- Select "Properties"

- "Policy conditions:" should only show "Windows-Group matches "DOMAIN\OU""

- Select "Edit PRofile"

- Select "Advanced"

- Remove "Framed-Protocol" from the "Attributes:"

- Edit "Service-Type" from the "Attributes:" and change the "Attribute Value" to "Login"

- In the "Advanced" tab, select "Add" + "Vendor-Specific" + "Add" + "Add"

Select from list: Cisco

Check "Yes, it conforms"

- Select "Configure Attributes"

Vendor-assigned attribute number: 1

Attribute format: String

Attribute value: 7

- Save (ok, ok, ok......)

Regards,

Dandy

0 Helpful

teller123
Level 1
Level 1
In response to Danilo Dy

‎11-10-2007 10:38 PM

I was able to configure IAS to grant users level 7 access, but i would also like the privileges i have linked to level to be pushed from IAS as well. So when user bob logs in and is a member of a group that has level 7 access he can modify a interface but nothing else.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card