From: Jason W. Miller (jaymiller5@gmail.com)
Date: Fri Aug 31 2007 - 19:14:20 ART
On the ACS you would setup your control levels for this group, add users to
it with a read only configuration. On the concentrators you will go to
Admin|Access Rights|AAA Servers|Authentication in there setup your ACS
servers with the user/secret.
Jay
On 8/31/07, pankaj ahuja <networksecurityconsultant@gmail.com> wrote:
>
> Hi Everyone,
>
>
> I'm having some troubles creating an account on TACACS that has only read
> only privileges to only a couple of VPN concentrators which authenticate
> against TACACS. The TACACS Server is used to authenticate us for all types
> of Cisco Devices we have. Now I've created a group that should have only
> read only privileges for this group of users.
>
> I'm not sure how do we restrict this group to read only access, coz the
> TACACS lets us set up authorization level and specify the CLI commands
> that
> the user would be authorized to use. and I don't know how do I go about
> restricting the GUI access that one uses on the VPN concentrator.
>
> Any Ideas would be greatly appreciated.
>
> Thanks
>
> Pankaj
>
>
-- ~Jay~
This archive was generated by hypermail 2.1.4 : Sat Sep 01 2007 - 11:32:14 ART