Forgot about the user part. In IAS, Setup a remote access policy by domain groups. Create a domain group, throw the users in it that have access to the router and allow it in the policy.
When the user logs into the router, it will go to IAS, go down the list of Remote Access Policies, and allow that user rights based on the first match. Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=72127&t=72125 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]