Chapter 1
Overview
Other Authorization-Related Features
78-16592-01
In addition to the authorization-related features discussed in this section, the
following features are provided by Cisco Secure ACS:
Group administration of users, with support for 500 groups (see
•
"User Group
Management").
Ability to map a user from an external user database to a specific
•
Cisco Secure ACS group (see
Specification").
Ability to disable an account after a number of failed attempts, specified by
•
the administrator (see
page
7-20).
Ability to disable an account on a specific date (see
•
Account Disablement, page
Ability to disable groups of users (see
•
Ability to restrict time-of-day and day-of-week access (see
•
Time-of-Day Access for a User Group, page
Network access restrictions (NARs) based on remote address caller line
•
identification (CLID) and dialed number identification service (DNIS) (see
Setting Network Access Restrictions for a User Group, page
Downloadable ACLs for users or groups, enabling centralized, modular ACL
•
management (see
Network access filters, enabling you to apply different downloadable ACLs
•
and NARs based upon a user's point of entry into your network (see
Access Filters, page
IP pools for IP address assignment of end-user client hosts (see
•
Address Assignment Method for a User Group, page
Per-user and per-group TACACS+ or RADIUS attributes (see
•
Options, page
3-4).
Support for Voice-over-IP (VoIP), including configurable logging of
•
accounting data (see
Chapter 16, "User Group Mapping and
Setting Options for User Account Disablement,
7-20).
Group Disablement, page
Downloadable IP ACLs, page
5-2).
Enabling VoIP Support for a User Group, page
User Guide for Cisco Secure ACS for Windows Server
AAA Server Functions and Concepts
Chapter 6,
Setting Options for User
6-4).
Setting Default
6-5).
6-8).
5-7).
Setting IP
6-28).
Advanced
Network
6-4).
1-21