How do I allow acces to only certain radius clients for a given user?

I have IAS setup and functioning on 2k8 server to allow access to our Cisco switches and it's working fine.  Now I have a user who needs to be allowed to login and manage only certain switches and I'm not sure how to setup this "limit".  It appears that IAS goes through it's policies and as long as a policy matches an AD group that the user is in, the user is allowed to login to the switch.  I want to be able to somehow say that Person A can login to all the radius clients but Person B (in a different AD group) is only allowed to login to switch 1 but not switch 2.
Thanks in advance.
Who is Participating?
robbie_woodleyConnect With a Mentor Author Commented:
OK, found the solution.  In the Network Policy, Conditions I needed to an entry for Client IPv4 Address.  MS means the radius client you've entered in IAS.  The bummer is that it looks like I will have to create a Network Policy for each one versus being able to group them within IAS somehow and simply specify the group.  But I'll take what I can get.
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.