cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
configure & troubleshoot anyconnect

How to configure ASA Dynamic Access Policy to allow clients after checking first 3 characters of the hostname

912
Views
0
Helpful
0
Comments

 

 

Introduction

This document provides a sample configuration on how to apply a rule so that the Cisco ASA will check the first three characters of the

hostname before establishing the SSL connection.
 
 

Resolution

Here is the expression that you need to add on the DAP policy in order to establish the connection, based on the first three characters of the hostname.

 

 

assert(function()

   local match_pattern = "^[Mm][Ss][Vv]"

   local match_value   = endpoint.device.hostname

   if (type(match_value) == "string") then

        if (string.find(match_value, match_pattern) ~= nil) then

             return true

        end

   elseif (type(match_value) == "table") then

        local k,v

        for k,v in pairs(match_value) do

             if (string.find(v, match_pattern) ~= nil) then

                  return true

             end

        end

   end

   return false

end)()