You need to map users of different Vlan w/ different groups in ACS bases on their domians. Each group in ACS should be configured for Dynamic ACls to be downloaded after authentication for that particular user. This way you can restrict the access of...
Hi , In pix the back up method to get into the device if aaa server fails works on the code 6.3.4 and above . In the codes later than 6.3.4 if the tacacs server fails there is no way to get in except password recovery . However if we have not config...
Hi , We can configure authentication and authorization for the users managing the Pix firewall however we cannot configure the accounting for them on the AAA server ( as we do on a router ot switch running IOS ) . Accounting records on a AAA server f...
