cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
974
Views
0
Helpful
3
Replies

ACS to push set of policy to the client

ganeshp
Level 1
Level 1

Is that possible for the VPN client to get same permanent IP address and specific ACL policy each time they access the network via VPN Tunnel and authenthicated by ACS server. In another word can ACS server push a particular IP and policy for each client? If can, how to do it?

Is there any reference site?

Thanks.

regards,

Ganesh

3 Replies 3

umedryk
Level 5
Level 5

As far as my knowledge goes, this is not possible.

jodilovell
Level 1
Level 1

Hi,

We've tried that and it doesn't appear to work. No matter what settings you put in ACS, it only appears to use ACS for authentication and not for user settings.

It doesn't seem possible but if you find a way, let us know!

s.uslay
Level 1
Level 1

Ganesh,

probably you already though that creating a different group ids with only one user IDs in it if you have few clients that you want to push policy.

The other workaround is to have generic userid for each user using the same policy for the same group and once they are authenticated and the policy (e.g. an access list) is pushed, the further policy settings can be done via NT domain authentication,or via SecureID. This will force you to use double authentication.