Options
Vlan Blocking based off AD Groups
thenjduke
Member Posts: 894 ■■■■□□□□□□
Okay ladies and gents I need your expertise. I am looking for a way to block one department on one vlan to another vlan based off Active DIrectory groups and then give access to one vlan for one department to another deparment based off t heir ad groups. I know can used Triple AAA and some ACL to do this but anyone have any suggestions how to do it.
Vlan 1 192.168.1.0 255.255.255.0 HR
Vlan 2 192.168.2.0 255.255.255.0 IT
Vlan 3 192.168.3.0 255.255.255.0 SALES
Just example what we are looking to do.
So we want to block HR from IT but give them access to Sales. I know cisco makes Triple A package but forget what it is called and I al looking for example for ACL to set this up.
Vlan 1 192.168.1.0 255.255.255.0 HR
Vlan 2 192.168.2.0 255.255.255.0 IT
Vlan 3 192.168.3.0 255.255.255.0 SALES
Just example what we are looking to do.
So we want to block HR from IT but give them access to Sales. I know cisco makes Triple A package but forget what it is called and I al looking for example for ACL to set this up.
CCNA, MCP, MCSA, MCSE, MCDST, MCITP Enterprise Administrator, Working towards Networking BS. CCNP is Next.
Comments
-
Options
phoeneous
Member Posts: 2,333 ■■■■■■■□□□
As far as I know, if you want ldap/ad integration the only way to do this is with an ASA.