From: WorkerBee (ciscobee@gmail.com)
Date: Thu Jan 03 2008 - 00:04:44 ARST
Have you take a look at ACS Device Group feature? You can group a
collection of devices under a device group
and associate it to user access rights.
HTH
On Jan 3, 2008 9:40 AM, Ken Young <1000baset@gmail.com> wrote:
> Happy New Year everyone!
>
>
>
> I have an ACS question, I am relatively new with ACS and have a couple of
> questions:
>
>
>
> I am trying to configure a scenario such as this:
>
>
>
> Group10 Can authenticate to Switch1 and Switch2
>
> Group12 Can Authenticate to Switch1, 2, 3, 4
>
> Group 14 Can Authenticate to all Wireless APs. but not switches
>
>
>
> I have the switches configured so they are authenticating to the ACS server
> no problem like wise for my Wireless clients.
>
>
>
> The problem I am encountering is that it seems that if a user can
> successfully authentication at all then can access all devices. I have
> looked into NARs as I thought that would provide the function that I am
> looking for but so far no luck.
>
>
>
> The reverse seems very doable if a member of this group deny access. Buy
> I can't seem to figure out If a member of this group permit access. I am
> sure I am missing something very simple.
>
> _______________________________________________________________________
> Subscription information may be found at:
> http://www.groupstudy.com/list/CCIELab.html
This archive was generated by hypermail 2.1.4 : Fri Feb 01 2008 - 10:37:57 ARST