https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356487#M798199 <HTML><HEAD></HEAD><BODY><P>Can anyone reply as its urgent..........</P><P></P><P>Regards,</P><P>Vinay Gupta</P></BODY></HTML> Tue, 12 Jan 2010 14:28:13 GMT ray_stone 2010-01-12T14:28:13Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356484#M798196 <P>Hello Experts,</P><P></P><P>We have Cisco ASA 5505 (8.2.1) and Remote VPN is configured and access is provided to our NOC team to work from home and we have set hair pin route settings to access other production locations from one vpn account and its working fine. NOC users account is created and previlige is set 2 only to connect with VPN.</P><P></P><P>Now we have got a new request to setup a new Remote VPN configuration for our DEV Team and have to provide few servers access which is not a massive but once i setup a users for DEV Team then they may have access the PROD Servers by using the first VPN configuration. I want to restrict the DEV users, not to use the first remote VPN account and dont know the configuration/procedure.</P><P></P><P>Pls. advice.</P><P></P><P>Thanks &amp; Regards,</P><P>Vinay Gupta</P> Mon, 11 Mar 2019 16:56:28 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356484#M798196 ray_stone 2019-03-11T16:56:28Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356485#M798197 <HTML><HEAD></HEAD><BODY><P>HI Vinay</P><P>when you create the 2nd RA group , will you give them a new IP pool? If so, then I guess you can use ACL to restrict access to servers?</P><P></P><P>I had a similar situ and I used a software called secureRDP (for windows servers only) which allowed our 1st line support users who RDP into certain servers only - preventing them from piggybacking from 1 server to another via RDP (only)</P><P></P><P></P><P>HTH</P></BODY></HTML> Tue, 12 Jan 2010 12:01:51 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356485#M798197 SOL10 2010-01-12T12:01:51Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356486#M798198 <HTML><HEAD></HEAD><BODY><P>Yes, I will define a new IP pool for DEV Team but the major issue is the DEV user can be connected with NOC remote VPN by putting thier credentials which I want to seperate.</P><P></P><P>Regards,</P><P>Vinay Gupta</P></BODY></HTML> Tue, 12 Jan 2010 12:08:23 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356486#M798198 ray_stone 2010-01-12T12:08:23Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356487#M798199 <HTML><HEAD></HEAD><BODY><P>Can anyone reply as its urgent..........</P><P></P><P>Regards,</P><P>Vinay Gupta</P></BODY></HTML> Tue, 12 Jan 2010 14:28:13 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356487#M798199 ray_stone 2010-01-12T14:28:13Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356488#M798200 <HTML><HEAD></HEAD><BODY><P>??</P></BODY></HTML> Wed, 13 Jan 2010 00:15:54 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356488#M798200 ray_stone 2010-01-13T00:15:54Z https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356489#M798202 <HTML><HEAD></HEAD><BODY><P>Hi</P><P>need to know more re your setup- are you using Radius/Tacacs?</P><P></P><P>how would the DEV Team know the login credentials of the NOC team? or do you mean that the Dev Team are also part of the NOC TEam sec group in AD?</P></BODY></HTML> Wed, 13 Jan 2010 10:00:19 GMT https://community.cisco.com/t5/network-security/cisco-remote-vpn-users-need-to-be-restricted-to-access-previous/m-p/1356489#M798202 SOL10 2010-01-13T10:00:19Z