Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1220
Views
0
Helpful
0
Replies

Cisco ASA + FreeRadius: Downloadable ACL configuration

aminx21234
Level 1
Level 1

‎06-24-2014 07:02 AM - edited ‎03-11-2019 09:22 PM

VPN users that are using FreeRadius are having access to all VLANs. VPN users using local authentication have local ACLs applied to their access.

I need to know what configuration change I need to make (on ASA or FreeRadius) to have the same ACLs (locally configured on the ASA) applied to the FreeRadius authenticated VPN users.

FreeRadius users file configuration:

cisco Auth-Type := System
Service-Type = NAS-Prompt-User,
cisco-avpair = "shell:priv-lvl=15"

Please provide me with steps and configuration examples to specify which VLAN FREERADIUS VPN users can have access to.

What lines could I add to the users file to accomplish this? Do I need to specify a different service-type or auth-type? Are there any settings on the ASA to enable to enforce local ACLs for FreeRadius authenticated users?

Thanks in advance for all suggestions.

1 person had this problem
Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card