Configure NetScaler MAS and Cisco ACS to provide readonly access to users for MAS.

---

Instructions

1) Configure NetScaler MAS with a TACACS Server and a shared unique secret key.


2) Use this TACACS Server as External Server Type under Authentication Configuration with Fallback to Local Authentication Enabled (to prevent system lockout situation).

3) Configure Cisco ACS with a Network and AAA Client as NetScaler MAS for TACACS with same shared secret key used in Step#1.

4) Use a Command Set for readonly access.

5) Configure a user on Cisco ACS for this readonly access.
6) Login to MAS with this user created above for readonly access.
7) User can view all the statistics on the MAS appliance.
8) However, user cannot make any changes to configuration like adding/deleting any objects.