Need a ASA rule that allows only a specific VPN user access to a specific internal IP. Is there a way to do this? We use ACS for AD authentication for the remote VPN users, so the user is known? Can I do this in the ASA (preferred), or do we need to ...