Contents
x
User Guide for Cisco Secure Access Control System 5.4
OL-26225-01
Managing Authorizations and Permissions 9-17
Creating, Duplicating, and Editing Authorization Profiles for Network Access 9-18
Specifying Authorization Profiles 9-19
Specifying Common Attributes in Authorization Profiles 9-19
Specifying RADIUS Attributes in Authorization Profiles 9-22
Creating and Editing Security Groups 9-24
Creating, Duplicating, and Editing a Shell Profile for Device Administration 9-24
Defining General Shell Profile Properties 9-26
Defining Common Tasks 9-26
Defining Custom Attributes 9-29
Creating, Duplicating, and Editing Command Sets for Device Administration 9-29
Creating, Duplicating, and Editing Downloadable ACLs 9-32
Deleting an Authorizations and Permissions Policy Element 9-33
Configuring Security Group Access Control Lists 9-34
CHAPTER
10 Managing Access Policies 10-1
Policy Creation Flow 10-1
Network Definition and Policy Goals 10-2
Policy Elements in the Policy Creation Flow 10-3
Access Service Policy Creation 10-4
Service Selection Policy Creation 10-4
Customizing a Policy 10-4
Configuring the Service Selection Policy 10-5
Configuring a Simple Service Selection Policy 10-6
Service Selection Policy Page 10-6
Creating, Duplicating, and Editing Service Selection Rules 10-8
Displaying Hit Counts 10-10
Deleting Service Selection Rules 10-10
Configuring Access Services 10-11
Editing Default Access Services 10-11
Creating, Duplicating, and Editing Access Services 10-12
Configuring General Access Service Properties 10-13
Configuring Access Service Allowed Protocols 10-16
Configuring Access Services Templates 10-20
Deleting an Access Service 10-21
Configuring Access Service Policies 10-22
Viewing Identity Policies 10-22
Viewing Rules-Based Identity Policies 10-24
Configuring Identity Policy Rule Properties 10-25