beautypg.com

About administrator accounts – Cisco 3.3 User Manual

Page 468

background image

Chapter 12 Administrators and Administrative Policy

Administrator Accounts

12-2

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

About Administrator Accounts

Administrators are the only users of the Cisco Secure ACS HTML interface. To
access the Cisco Secure ACS HTML interface from a browser run elsewhere than
on the Cisco Secure ACS Windows server itself, you must log in to Cisco Secure
ACS using an administrator account. If your Cisco Secure ACS is so configured,
you may need to log in to Cisco Secure ACS even in a browser run on the
Cisco Secure ACS Windows server. For more information about automatic local
logins, see

Session Policy, page 12-16

.

Note

Cisco Secure ACS administrator accounts are unique to Cisco Secure ACS. They
are not related to other administrator accounts, such as Windows users with
administrator privileges.

In the HTML interface, an administrator can configure any of the features
provided in Cisco Secure ACS; however, the ability to access various parts of the
HTML interface can be limited by revoking privileges to those parts of the HTML
interface that a given administrator is not allowed to access.

For example, you may want to limit access to the Network Configuration section
of the HTML interface to administrators whose responsibilities include network
management. To do so, you would select only the Network Configuration
privilege for applicable administrator accounts. For more information about
administrator privileges, see

Administrator Privileges, page 12-3

.

Cisco Secure ACS administrator accounts have no correlation with Cisco Secure
ACS user accounts or username and password authentication. Cisco Secure ACS
stores accounts created for authentication of network service requests and those
created for Cisco Secure ACS administrative access in separate internal
databases.