05-24-2012 02:31 PM - edited 03-10-2019 07:07 PM
Is it possible to map multiple downloadable ACLs to a single user or user group using ASA and ACS?
For example, you have an ACL controlling access to servers (ACL A), and another ACL controlling access to internet (ACL B). Is it possible to assign multiple ACLs to a user group, such that User Group A can only access servers, while User Group B can access both servers and internet (ACL A+ ACL B)?
Thanks and regards.
Solved! Go to Solution.
05-24-2012 05:04 PM
George,
The User and group settings would only allow you to select only one DACL instance at a time.
Regards,
Jatin
Do rate helpful posts-
05-24-2012 05:04 PM
George,
The User and group settings would only allow you to select only one DACL instance at a time.
Regards,
Jatin
Do rate helpful posts-
06-04-2012 09:39 AM
Ok,
I created multiple authorization profiles (each with a DACL) and attach it to an access policy result. However, only the DACL in the first authorization profile is picked. So the answer is simply, it's not possible.
Thanks for your help.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide