Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1705
Views
0
Helpful
1
Replies

ASA WEBVPN Simultaneous logins issue

Palazsto
Level 1
Level 1

‎04-16-2019 12:05 AM

Hi Guys,

 

I have the following problem to solve :

On ASA device with webvpn configured on it I want to filter the possible simultaneous logins based on a username.Is this possible at all ?

For example all users should have one simultaneous session possible and only one user should have more - 20 for exmaple.There is also LDAP configuration on the ASA.

What about RADIUS integration ?

Labels:
0 Helpful
1 Reply 1

Rahul Govindan
VIP Alumni
VIP Alumni

‎04-16-2019 05:28 AM

Yes, you can do this in multiple ways depending on the type of auth you use.

 

For local user, you can individually change the vpn-simultaneous-login attribute for that user to 20.

 

username testuser password xxxxx privilege 5
username testuser attributes
 vpn-simultaneous-logins 20

 

If is an LDAP or Radius user, you can either use LDAP attribute map or Radius group-policy mapping feature to map the user to a different group-policy. Inside the group-policy, you can set the vpn-simultaneous-login attribute to 20. You can put the user in a separate AD group to differentiate him/her between other users. 

0 Helpful
Customers Also Viewed These Support Documents