How to Configure Read-Only Access for Certain Users to the Management Console for the Netscaler Appliance

How to Configure Read-Only Access for Certain Users to the Management Console for the Netscaler Appliance

book

Article ID: CTX140290

calendar_today

Updated On:

Description

This article describes how to configure read-only access for certain users to the management console for the NetScaler Appliance that is using NetScaler 9.3 builds.

Instructions

To configure read-only access, complete the following steps:
  1. In NetScaler GUI, go to System > Authentication.

User-added image

  1. Create an authentication server pointing to your authentication provider (valid entries include, Radius, LDAP, TACACS, and Cert).
User-added image
  1. Enable Policies tab.
User-added image
  1. Create a new authentication policy pointing to the server created in Step 2.
User-added image
  1. Due to a limitation in NetScaler 9.3, the authentication server must be bound globally. At the bottom of the Authentication Policies and Servers page, click Global Bindings.
User-added image
  1. In Bind/Unbind Authentication Policies to Global, click Insert Policy.
User-added image
  1. Insert the policy that is created in Step 4.
User-added image

  1. Click OK and then close and save the configuration.

  2. For illustration, the groups and users in LDAP will be configured. Refer your vendor documentation on how to configure groups and users in other authentication formats (Radius, TACACS, and so on). Open the domain controller or authentication server that is referenced in Step 2.

  3. For LDAP, open Active Directory Users and Computers.

    User-added image

  4. If already a user is configured to grant read-only access to the management console, skip this step. If not, right-click on Users and create a new user.

  5. Create a new group that will be used to specify the limited access to the management console. The name of the group must match the name used on the NetScaler (do not use any spaces on the group name).

    User-added image

  6. Double-click the new group and add the users who must be provided read-only access to the management console.

    User-added image

  7. On the NetScaler GUI, go to System > Groups.

    User-added image

  8. Click Add and type the name of the group created in Active Directory (or other authentication server).

    Note: The name must be matching exactly (case sensitive). In Command Policies, select read-only check box.

    User-added image

  9. Click Create and Close.

  10. Save the configuration. To test, log off and log on to NetScaler as a member of the Read_Only_Access group.

    Note: For configuration utility changes in NetScaler 10.1, click here.

Issue/Introduction

This article describes how to configure read-only access for certain users to the management console for the NetScaler Appliance that is using NetScaler 9.3 builds.
Powered by Wolken Software