Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4339
Views
0
Helpful
1
Replies

Downloadable ACL with ASA

iam_pomme
Level 1
Level 1

‎11-22-2010 07:05 PM - edited ‎03-10-2019 05:36 PM

Hi group,

I'm configuring downloadable ACL on ACS 5.1 for authorized vpn users. Whenever users log in to vpn through ASA then they will get individual ACL.

I checked AAA Protocol > RADIUS Authentication Report and found something like #ACSACL#-IP-testDACL-4cea0718 after user authentication successfully, and users are restricted as per ACL configured. But when I check at my ASA, I can't find any ACSACL on configuration.


My question is how can I make sure that ACSACL is already applied to my ASA?

Please advise, thank you all.

PK.

Labels:
0 Helpful
1 Reply 1

slawford
Cisco Employee
Cisco Employee

‎11-25-2010 07:48 PM

Hi PK,

The "show vpn-sessiondb detail" command on the ASA will show if the DACL has been applied to the sesssion. The ACL name will be shown under the "Filter" field.

For IPSec VPN client users the command would be "show vpn-sessiondb detail remote", for SSLVPN/AnyConnect it would be "show vpn-sessiondb detail svc".

Steve.

0 Helpful
Customers Also Viewed These Support Documents