07-16-2021 12:52 AM
HI,
I'm setting up a new FTD which is being controlled by FDM
It looks like Dynamic Access Policies is not available like it was on ASA, I want to set up Remote Access VPN that only gives access to users which are in a specific Security Group, can this be achieved in any other way?
Thanks
Solved! Go to Solution.
07-16-2021 01:03 AM
Hi @wcutajar
If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.
FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.
07-16-2021 01:03 AM
Hi @wcutajar
If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.
FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.
07-19-2021 02:59 AM
Can confirm that it works, I've set up a RADIUS server with reply attributes and worked flawlessly.
Thanks again @Rob Ingram
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide