- Subscribe to RSS Feed
- Mark as New
- Mark as Read
- Bookmark
- Subscribe
- Printer Friendly Page
- Report Inappropriate Content
on 02-01-2010 08:41 AM
The attached document .pdf describes the configuration details for deploying Clientless SSL VPN ACLs via Dynamic Access Policies (DAPs). Multiple ACLs will be aggregated for VPN policy enforment. The same concept can be applied for Network (Layer 3) ACLs to be enforced on AnyConnect SSL/IKEv2 VPN, and IPsec IKEv1 (legacy) clients,
This information is also explained in the DAP Deployment Guide,
Related Information

- Mark as Read
- Mark as New
- Bookmark
- Permalink
- Report Inappropriate Content
That's a great walkthrough, but I find the WebVPN interface looks cleaner to those with less privileges if you create separate bookmark lists to go along with the separate policies. So there would be an "Everyone" bookmark list, and a "Payroll" bookmark list. Only the Payroll DAP applies the Payroll bookmark list. The consequence of this configuration tweak is that less privileged users don't see a "greyed out" bookmark that they can't access, and consequently don't know what they're missing.