Buy or Renew
Buy or Renew
Meraki Community is live! Welcome Meraki Members! Learn more here.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
677
Views
5
Helpful
2
Replies

wevbpn restrict access

josephium
Level 3
Level 3

‎10-01-2007 11:15 PM - edited ‎03-11-2019 04:19 AM

Hi,

i have ASA 7.2 with ACS 4.0, all authentication is done on the ACS, now if i enable webvpn, how can i restrict specific user from my network to access it, so that not anyone who has a user and pass on ACS can access it, what attribute should i use ?

thank you

Labels:
0 Helpful
2 Replies 2

Fernando_Meza
Level 11
Level 11

‎10-01-2007 11:35 PM

Hi .. you need to use IETF attribute 25 class. The below link will give you an idea of what you need to do. Basically you would need to use group-lock on the ASA. I have configured this before but don't have access to the devices right now. Have a look at the below link and let me know if you still can't work out how to do it.

I hope it helps .. please rate it if it does !!!

http://www.ciscotaccc.com/kaidara-advisor/security/showcase?case=K01201325

josephium
Level 3
Level 3
In response to Fernando_Meza

‎10-03-2007 12:20 AM

thank you for your fast response, but by using this IETF attribute i can make sure that other users in ACS (the ones that i don't want to enable) will not be able to authenticate in the webvpn ? and shouldn't i use the Radius of vpn/asa instead of the IETF radius ?

thank you

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card