Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
778
Views
3
Helpful
2
Replies

Dynamic tunnel assingment

Go to solution
joeferdinandi
Level 1
Level 1

‎04-18-2007 10:11 AM - edited ‎02-21-2020 01:29 AM

I'm trying to configure the ASA appliance so that a user will be dynamically placed into a particular tunnel group based on an attribute returned from Cisco Secure ACS when the user is authenticated. I have been able to accomplish this on the Cisco VPN 3000 concentrator by returning the IETF Radius Attribute [25] Class. I need assistance trying to configure the same behavior in the ASA.

Thanks!

0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
ydemissie
Level 1
Level 1

‎06-06-2007 08:39 AM

Attached is a document I wrote on how to accomplish this on an ASA 7.2(2) with RSA Authentication Manager (Funk Radius server built-in)...

View solution in original post

Preview file
45 KB
0 Helpful
2 Replies 2

Go to solution
ydemissie
Level 1
Level 1

‎06-06-2007 08:39 AM

Attached is a document I wrote on how to accomplish this on an ASA 7.2(2) with RSA Authentication Manager (Funk Radius server built-in)...

Preview file
45 KB
0 Helpful

Go to solution
ggilbert
Cisco Employee
Cisco Employee

‎06-08-2007 06:37 AM

On the ACS server - the OU should be the group-policy to which the users should be connected to (group-policy configured on the ASA) and on the group-policy you can specify the group-lock feature to lock the user into the specified tunnel-group.

Hope this helps.

Let me know if you have any questions.

Cheers,

Gilbert

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card