[c-nsp] Limiting Tacacs groups per device

Mohammad Khalil eng_mssk at hotmail.com
Tue Jun 7 17:08:52 EDT 2011


Try to implement authorization sets in order to limit the access to the routers 
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808d9138.shtml

BR,
Mohammad Khalil

> Date: Tue, 7 Jun 2011 20:19:33 +0000
> From: opslists at rhemasound.org
> To: cisco-nsp at puck.nether.net
> Subject: [c-nsp] Limiting Tacacs groups per device
> 
> We have a situation where we have two groups of engineers.  One set needs full access to all customer devices we manage.
> The second set needs full access to most devices we manage except where the customer has requested they not make config changes.
> I am working with a server admin to set up a tacacs server using tac_plus and I am unsure of best way to implement this functionality.
> I see some information about pre or post authentication scripts but clear cut information is a bit hard to find.
> 
> ---
> Brian Raaen
> Network Architect
> Zcorum
> braaen at zcorum.com
> _______________________________________________
> cisco-nsp mailing list  cisco-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/cisco-nsp
> archive at http://puck.nether.net/pipermail/cisco-nsp/
 		 	   		  


More information about the cisco-nsp mailing list