WebVPN Group(s).

Ganeshenn · ‎06-23-2008

Greetings All,

I have a ASA 5520 upon which I need to build a WebVPN for the company urls - webmail, intranet portals etc.

There will be 2 groups -

a. Confidential Access - For senior management.

b. Public Access - For employee access.

RSA Token & LDAP auth would be used for access to the WebVPN. However, I am unclear on certain aspect.

How do I isolate the 2 groups? I mean only Senior management should be able to view & access the first set of links while employees see and access the other set of links only.

Both the groups will be available to all users loggin on to the WebVPN. Since the authentication mechanism - LDAP - is the same, anyone would be able to access the groups and in turn, urls.

Please suggest what approach can be taken in this regard.

Thanks,

Ganeshenn

hadbou · ‎06-27-2008

WebVPN lets users establish a secure, remote-access VPN tunnel to a security appliance using a web browser. Users do not need a software or hardware client.WebVPN provides secure and easy access to a broad range of web resources and web-enabled applications from almost any computer on the Internet.

Refer the "Configuring WebVPN" section present in the following url for more info on webvpn group configration:

http://www.cisco.com/en/US/docs/security/asa/asa72/configuration/guide/webvpn.html#wp1040653

ahmed.gadi · ‎10-09-2011

Hi Ganesh,

I am facing same issue what you described to create 2 groups authenticated by RSA secureID. Have you resolved the issue ? please let me know how.

Regards

Ahmed