Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
653
Views
0
Helpful
2
Replies

Securing multiple AnyConnect connection profiles

Michael Marzol
Level 1
Level 1

‎06-17-2013 08:23 AM - edited ‎02-21-2020 06:57 PM

Hello,

Here is our scenario. We have three (3) separate AnyConnect connection profiles each with different levels of access enforced through ACL filters. We have aliases configured for each connection profile in order for each group member to be able to choose his group when logging in to AnyConnect. Authentication is done via LDAP to one single server/domain instance on which all users have accounts. Given our scenario and without using multi factor authentication, is there any way to keep a user from logging in to a connection profile in the AnyConnect client which he shouldn't have access to?

Thanks,

-Mike

Labels:
0 Helpful
2 Replies 2

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-17-2013 07:50 PM

Yuo should be able to do this with tunnel-group locking. Link.

0 Helpful

nehat Sadriu
Level 1
Level 1
In response to Marvin Rhoads

‎06-18-2013 01:41 PM

Dear Marvin,

I have a similar situation where i have diferent connection profile and group policies where i apply acl where each profile

has access to different resources.

My question would be. Is there any possibility to allow only specific real IP addresses to initiate VPN session to the firewall.

regards

Nehat

0 Helpful
Customers Also Viewed These Support Documents