From: Truman Ford (truman.ccie@gmail.com)
Date: Wed Mar 18 2009 - 11:49:09 ART
> Hi GS and Gentlemen,
>
> I have Cisco ACS 4.1.1.23.4 in my network, and is working fine, but I am
> stuck with the prevelige access issue.
>
> I have created *access-switch-restrict under* "*Shell Command
> Authorization Set" *
> *And this group should have the following access:*
> **
> *1) The usere should be able to change the vlan*
> *2) The user should be able to see the vlan *
> *3) able to do write mem*
> *3) The user should not be able to do sh run/shut down from config mode or
> from previlege mode(ie. the do sh run, do shut down, etc should not work*
> **
> *Finally, My basic requirement is that the person in that group can only
> change the vlan and write it. That's it.*
> **
> *Please could you let me know how can i acheive this.*
> **
> *I have attached the screenshots attached in winrar for the same for
> reference.*
> **
>
>
> --
> warm regards, Truman
>
-- warm regards, TrumanBlogs and organic groups at http://www.ccie.net
This archive was generated by hypermail 2.1.4 : Mon Apr 06 2009 - 06:44:05 ART