cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1211
Views
5
Helpful
2
Replies

Dynamic Access Policies on FTD or similar

wcutajar
Beginner
Beginner

HI,

I'm setting up a new FTD which is being controlled by FDM

 

It looks like Dynamic Access Policies is not available like it was on ASA, I want to set up Remote Access VPN that only gives access to users which are in a specific Security Group, can this be achieved in any other way?

 

Thanks

1 Accepted Solution

Accepted Solutions

Rob Ingram
VIP Expert VIP Expert
VIP Expert

Hi @wcutajar 

If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.

 

FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.

View solution in original post

2 Replies 2

Rob Ingram
VIP Expert VIP Expert
VIP Expert

Hi @wcutajar 

If you just want to control RAVPN login access, use a RADIUS server and create a rule to explictly grant access based on the group membership. The RADIUS server could be a Windows server running NPS or FreeRadius, you don't necessarily need to purchase ISE.

 

FYI, Dynamic Access Policies is now available on FTD from version 7.0, but only if managed via FMC.

wcutajar
Beginner
Beginner

Can confirm that it works, I've set up a RADIUS server with reply attributes and worked flawlessly.

 

Thanks again @Rob Ingram 

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers