https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618413#M1029091 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>what for a attribute do you have add to the Radius ?</P><P></P><P>Thenks</P></BODY></HTML> Wed, 27 Jun 2007 20:04:19 GMT m.trautes 2007-06-27T20:04:19Z https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618410#M1029085 <P>Hello,</P><P></P><P> I have setup SSL VPN on ASA. Users are authenticated using a Radius server </P><P>(Not Cisco ACS). I need to know how to assign certain users to one policy and other users to another policy. Currently all the user get the same Webpolicy but I would like to give some users more access through SSL vpn than other users.</P><P></P><P>Waiting for any feedback,</P><P></P><P>Regards,</P><P></P> Mon, 11 Mar 2019 09:18:35 GMT https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618410#M1029085 m-haddad 2019-03-11T09:18:35Z https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618411#M1029086 <HTML><HEAD></HEAD><BODY><P>Hello, </P><P></P><P>I have not set it up using SSL before but I usually allow the rights using group policy and tunnel groups. </P><P></P><P>It looks like it should work for WebVPN/SSL though. </P><P></P><P>Andy. </P></BODY></HTML> Fri, 12 Jan 2007 17:19:04 GMT https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618411#M1029086 andyjames 2007-01-12T17:19:04Z https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618412#M1029090 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P> I have done the setup and it is working now. It requires adding an attribute on the Radius server to match the SSL policy name on the ASA. </P><P></P><P>Tested and working great...</P><P></P><P>Regards,</P><P></P></BODY></HTML> Fri, 12 Jan 2007 18:37:46 GMT https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618412#M1029090 m-haddad 2007-01-12T18:37:46Z https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618413#M1029091 <HTML><HEAD></HEAD><BODY><P>Hello,</P><P></P><P>what for a attribute do you have add to the Radius ?</P><P></P><P>Thenks</P></BODY></HTML> Wed, 27 Jun 2007 20:04:19 GMT https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618413#M1029091 m.trautes 2007-06-27T20:04:19Z https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618414#M1029094 <HTML><HEAD></HEAD><BODY><P>Add CLASS attribute and for each policy enter OU=Management; for management policy and OU=Users; for users policy. Now when the user authenticate according to which policy matches his group the radius will the send the Group Name which will match one of the WebVPN group policy on the ASA.</P><P>Below you can find a full URL for SSL configuration:</P><P><A class="jive-link-custom" href="http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_7_2/conf_gd/vpn/webvpn.htm#wp1000003" target="_blank">http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_7_2/conf_gd/vpn/webvpn.htm#wp1000003</A></P><P></P><P>The above contains the procedure and attribute to be added,</P><P></P><P></P><P>Appreciate your rating,</P><P></P></BODY></HTML> Wed, 27 Jun 2007 20:53:18 GMT https://community.cisco.com/t5/network-security/ssl-vpn-question/m-p/618414#M1029094 m-haddad 2007-06-27T20:53:18Z