Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
781
Views
5
Helpful
1
Replies

FTD Remote Access VPN: Attach Users to Different Group Policies Based on AD Group

Go to solution
pannkakan_1
Level 1
Level 1

‎07-04-2018 04:15 AM - edited ‎02-21-2020 07:56 AM

Hi

 

I configured the RA-VPN via the FMC configuration tool and now I need to seperate Sales from Marketing. At the moment I did a Identity policy and an access policy blocking Sales from reaching Marketing Servers and vice versa. It seems to work but both VPN users get each others network from the split tunneling ACL even though they cant reach them. I was looking for LDAP Attribute Map but it doesnt seem to be possible in this version of FMC/FTD. (6.2.3)

 

Any other way to solve this?

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎07-04-2018 05:52 AM

LDAP attribute maps are not available on the FTD as of yet. You would have to use a Radius server such as ISE or Microsoft NPS to assign them to different group-policies. This way different groups can receive different split-tunnels, Filters etc. 

View solution in original post

1 Reply 1

Go to solution
Rahul Govindan
VIP Alumni
VIP Alumni

‎07-04-2018 05:52 AM

LDAP attribute maps are not available on the FTD as of yet. You would have to use a Radius server such as ISE or Microsoft NPS to assign them to different group-policies. This way different groups can receive different split-tunnels, Filters etc. 

Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card