07-21-2014 07:01 PM - edited 03-11-2019 09:30 PM
Hello Forum
Device - Cisco ASA 5540 (9)
Is it possible to create rules to allow a VPN user to login using his Windows laptop but stop his IPAD?
Thanks for the help.
Solved! Go to Solution.
07-21-2014 10:03 PM
Hello,
For this kind of setup you are looking for an Identity Engine that based on signatures can determine what device you are using to connect.
For this you can use the Cisco ISE but not the Cisco ASA.
Regards,
jcarvaja
CCIE R&S 42930, 2-CCNP,JNCIS-SEC
Looking for a quick remote support session? Contact us at inetworks.cr
07-21-2014 10:03 PM
Hello,
For this kind of setup you are looking for an Identity Engine that based on signatures can determine what device you are using to connect.
For this you can use the Cisco ISE but not the Cisco ASA.
Regards,
jcarvaja
CCIE R&S 42930, 2-CCNP,JNCIS-SEC
Looking for a quick remote support session? Contact us at inetworks.cr
07-23-2014 09:54 AM
Thanks for the help J
07-23-2014 07:46 PM
You can do this without needing to use ISE by using Dynamic Access Policies (DAP) if you have AnyConnect Premium and Advanced Endpoint Assessment licensing on the ASA.
Also, without AnyConnect for Mobile licensing the iPad client won't be able to login at all.
07-24-2014 11:40 AM
Marvin
Thanks for the input.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: