hello
Currently I administer approximately 100 Cisco routers, switches and access servers, every device uses radius authentication for access weather accessed via async, ISDN or VTY. Access to VTY has in the past been restricted solely by access-lists applied to the terminal lines. A situation has arisen where access-lists restrictions can no longer be used and I'm wondering if anyone has a solution for the following
I wish to place ALL devices into a single huntgroup that allows only VTY access to specified users ie:
userA is an administrator and is allowed both VTY and ASYNC access userB is a customer and is allowed only ASYNC access
Check with the Cisco docs and/or run some debugs to see if there are different attributes/values sent when the cisco it authenticating a VTY or ASYNC call ( IE, is NAS-Port-ID or similar different? ).
-Chris -- \\\|||/// \ StarNet Inc. \ Chris Parker \ ~ ~ / \ WX *is* Wireless! \ Director, Engineering | @ @ | \ http://www.starnetwx.net \ (847) 963-0116 oOo---(_)---oOo--\------------------------------------------------------ \ Wholesale Internet Services - http://www.megapop.net
- List info/subscribe/unsubscribe? See http://www.freeradius.org/list/users.html
