Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
315
Views
0
Helpful
1
Replies

ISE - Local site admin only has access to local users/devices?

joe.bennett
Level 3
Level 3

‎03-27-2014 09:50 PM - edited ‎03-10-2019 09:35 PM

Hi All,

I'm trying to configure ISE so that a local site administrator can only edit devices and users in his location, and only view reports/authentications for users at that location. I've tried setting the data access permissions to only view his location in all locations, but he can still view users authenticating on all devices.

Does anyone have any ideas how we can filter the reports so that he only sees his site users?

Thanks,

Joe

Labels:
0 Helpful
1 Reply 1

Saurav Lodh
Level 7
Level 7

‎03-27-2014 10:39 PM

Cisco ISE 1.2 allows you to define role-based access control (RBAC) policies that allow or deny certain system-operation permissions to an administrator. Below is how you can assign roles, based on access to reports ,  to two different admins.

http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/user_guide/ise_user_guide/ise_man_admin.html

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents