Chapter 5 Setting Up and Managing Shared Profile Components
Network Access Restrictions
5-10
User Guide for Cisco Secure ACS for Windows Server
78-14696-01, Version 3.1
c.
Select or type the applicable information in each of the following boxes:
•
AAA Client—Select All AAA clients, or the name of the network device
group (NDG), or the individual AAA client, to which access is permitted
or denied.
•
Port—Type the number of the port that you want to permit or deny access
to. You can use the wildcard asterisk (*) to permit or deny access to all
ports on the selected AAA client.
•
Src IP Address—Type the IP address to filter on when performing
access restrictions. You can type multiple entries separated by a comma
or use the wildcard asterisk (*) to specify all IP addresses.
d.
Click enter.
Result: The AAA client, port, and address information appears as a line item
in the table.
e.
To enter additional IP-based line items, repeat Step c and Step d.
Step 7
To permit or deny access based on calling location or values other than an
established IP address, follow these steps:
a.
Select the Define CLI/DNIS based access restrictions check box.
b.
To specify whether you are listing addresses that are permitted or denied,
from the Table Defines list, select the applicable value.
c.
To specify the applicability of this NAR, from the AAA Client list, select one
of the following values:
•
The name of the NDG
•
The name of the particular AAA client
•
All AAA clients
Tip
Only NDGs that you have already configured are listed.