https://community.cisco.com/t5/network-security/fmc-and-remote-access/m-p/5235482#M1118142 <P>You add connection profiles (aka "tunnel-groups" in the running-config) within the remote access VPN policy for a given device (or HA pair).</P> <P>Once you do that, each can have unique group policies, AAA methods, profiles etc.</P> Wed, 11 Dec 2024 14:29:18 GMT Marvin Rhoads 2024-12-11T14:29:18Z https://community.cisco.com/t5/network-security/fmc-and-remote-access/m-p/5235443#M1118134 <P>Hello All,</P><P>I have an ASA 5516-x that support two different connection profiles off a single device.&nbsp; The remote user has the ability to select the different connection profiles via the Secure Client application.&nbsp; This configuration works fine.&nbsp;</P><P>I am trying to implement this same type of configuration on my firepower that is connected to FMC.&nbsp; When I build the two Remote Access profiles it will only let me target the device with one of the connection profiles.</P><P>&nbsp;</P><P>Is there a way to build two connection profiles each having their own group policy and secure client profile configurations.&nbsp; I want one of the connection profiles to do SAML and the other to do RADIUS.&nbsp; The user would select the dropdown on the Secure Client just like they do today when using the ASA 5516-x.</P><P>Thanks for you time.</P><P>&nbsp;</P> Wed, 11 Dec 2024 13:44:19 GMT https://community.cisco.com/t5/network-security/fmc-and-remote-access/m-p/5235443#M1118134 Simple40 2024-12-11T13:44:19Z https://community.cisco.com/t5/network-security/fmc-and-remote-access/m-p/5235482#M1118142 <P>You add connection profiles (aka "tunnel-groups" in the running-config) within the remote access VPN policy for a given device (or HA pair).</P> <P>Once you do that, each can have unique group policies, AAA methods, profiles etc.</P> Wed, 11 Dec 2024 14:29:18 GMT https://community.cisco.com/t5/network-security/fmc-and-remote-access/m-p/5235482#M1118142 Marvin Rhoads 2024-12-11T14:29:18Z