Cisco Community
English
Register
Register
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel

Dynamic Access Policy (DAP) ACL Aggregation Use Case for SSL VPN

Labels:
5841
Views
0
Helpful
1
Comments
Nelson Rodrigues
Cisco Employee
‎02-01-2010 08:41 AM
edited on: ‎02-01-2010 ‎08:41 AM

The attached document .pdf describes the configuration details for deploying Clientless SSL VPN ACLs via Dynamic Access Policies (DAPs). Multiple ACLs will be aggregated for VPN policy enforment. The same concept can be applied for Network (Layer 3) ACLs to be enforced on AnyConnect SSL/IKEv2 VPN,  and IPsec IKEv1 (legacy) clients,

This information is also explained in the DAP Deployment Guide,

Related Information

0 Helpful
Comments
jimsiff
Beginner
Beginner
‎03-29-2010 12:02 AM
‎03-29-2010 12:02 AM

That's a great walkthrough, but I find the WebVPN interface looks cleaner to those with less privileges if you create separate bookmark lists to go along with the separate policies.  So there would be an "Everyone" bookmark list, and a "Payroll" bookmark list.  Only the Payroll DAP applies the Payroll bookmark list.  The consequence of this configuration tweak is that less privileged users don't see a "greyed out" bookmark that they can't access, and consequently don't know what they're missing.

Latest Contents
Disable Active Session AnyConnect
Created by vladb2 on 10-26-2020 09:26 AM
1
0
1
0
Hello,  Assuming I identify an user with a compromised account, is there any way to disable his active Cisco AnyConnect VPN sessions? Thanks!
Problem with FTP file transfer over site-to-site VPN tunnel
Created by baskervi on 10-26-2020 09:24 AM
0
0
0
0
We are using an ASA-5520 running 9.1(7) (very soon to be replaced by a Firepower), and we're having a problem with a vendor using an existing VPN tunnel to transfer files via FTP.  The files in general are quite small, e.g. a few KB, and these transf... view more
AMP for Endpoints -SQL CSV (cluster store volumes) issues
Created by Davedog on 10-26-2020 08:53 AM
1
0
1
0
We are having issues with AMP for Endpoints installed on Windows Server 2012 R2  servers with SQL clustering.it appears the cluster volume store is not accessible by the cluster if AMP is installed.  We have not implemented any exclusions other ... view more
Cisco ASA - Force reset AnyConnect VPN passwords for all use...
Created by LovejitSingh1313 on 10-26-2020 08:37 AM
2
0
2
0
Hello @balaji.bandi  @Aref Alsouqi  @Marius Gunnerud , Is there a ways I can reset all the VPN users password to single same password  at one effort instead of resetting all of them back and forth? Thanks ... view more
Event Type: Retrospective Quarantine Attempt Failed
Created by ITandCoffee on 10-26-2020 07:49 AM
4
0
4
0
Quick question regarding this event type - our organization has been seeing a lot of these lately. My question is, what would cause the failure? Is it that the file in question no longer exists on the target machine?Any insight would be great!
Content for Community-Ad