Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1611
Views
5
Helpful
2
Replies

Dynamic Access Policies on FTD or similar

Go to solution
wcutajar
Level 1
Level 1

‎07-16-2021 12:52 AM

HI,

I'm setting up a new FTD which is being controlled by FDM

 

It looks like Dynamic Access Policies is not available like it was on ASA, I want to set up Remote Access VPN that only gives access to users which are in a specific Security Group, can this be achieved in any other way?

 

Thanks

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rob Ingram
VIP
VIP

‎07-16-2021 01:03 AM

Hi @wcutajar 

If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.

 

FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.

View solution in original post

2 Replies 2

Go to solution
Rob Ingram
VIP
VIP

‎07-16-2021 01:03 AM

Hi @wcutajar 

If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.

 

FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.

Go to solution
wcutajar
Level 1
Level 1

‎07-19-2021 02:59 AM

Can confirm that it works, I've set up a RADIUS server with reply attributes and worked flawlessly.

 

Thanks again @Rob Ingram 

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card