cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

345
Views
0
Helpful
0
Replies
Highlighted
Beginner

5506-X / 5508-x / 5516-x Powerfire Microsoft AD Integration with ACL User/Group Based Source

Hi

 

I have users that connect via the VPN authenticated via the Microsoft Windows AD.

 

User connects via front end firewall on the any connect VPN.

The second firewall will be a third generation firewall with FirePower, on the second FirePower firewall is AD integration possible and can we filter based on the AD user/group?

ie: access-list 111 permit user jsmith host 10.1.1.100 port 443

access-list 111 permit group sales host 10.1.1.100 port 443

 

The only document i have found is the below but does not specify if the above is possible, has anyone done this? Any help will be great :)

 

AD-ACL.JPG

 

Thanks