Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
325
Views
0
Helpful
2
Replies

Local anyconnect group to specific split tunnelling

yvonne-tsara
Level 1
Level 1

‎11-11-2024 04:23 AM

Good day

I have sent up Anyconnect remote access vpns which are being authenticated through an AD for Duo MFA. Previously using local AAA, would lock users to a specific group. How can I achieve the same when the users are now connecting from AD.

 

Regards

 

0 Helpful
2 Replies 2

Kasun Bandara
VIP
VIP

‎11-11-2024 04:49 AM

@yvonne-tsara hi, check this guide. HTH

https://duo.com/docs/cisco

Please rate this and mark as solution/answer, if this resolved your issue
Good luck
KB
0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎11-11-2024 05:30 AM

@yvonne-tsara you can use the LDAP attribute-map feature. It applies to both ASA and FTD-based remote access VPNs.

https://www.cisco.com/c/en/us/support/docs/security/asa-5500-x-series-next-generation-firewalls/91831-mappingsvctovpn.html#toc-hId--69595584

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card