you can also use radius, i believe in server 2008 its called Network policy server. You can have it answer back not only a yes or no, but the AD group
as well. Lets say you wanted policies for 3 groups
each of these would have a radius policy, and if someone was a member of marketing, NPS/IAS(if server 2003) would answer back with the group name, which would correspond with the group policy name in the 3005(they dont necessarily have to match, if you want marketing to be in a group on the 3005 called limited etc. I do remember this was a tad tricky to configure on the 3005, but I had it working a while ago just like this, and was able to use one ipsec group but different policies based on the radius response. I defined the policy groups(IP assignments, allowed subents etc) on the 3005.
It is our pleasure to officially announce the finalists in the 2021 IT Blog Awards. We are now looking to our amazing tech community to check out the amazing line up of bloggers, vloggers and podcasters. Make sure to vote for your favorites...
Community Live Event Slides
This event talks about Cisco SecureX, its benefits, features, and usage. The session includes sample use cases and live demonstrations.
Cisco expert Luis Silva talks about how this solution can integrate Cisco technology and ...
Hello All, Recently I got an opportunity to perform POC with Cisco ISE (2.7 Patch 4) and Aruba Wireless AP (IAP) to perform 802.1x EAP-FAST (machine + user) authentication followed by Posture Assessment on Windows 10 Machines (installed with AnyConnect 4....
Hello All, Recently I got an opportunity to perform POC with Cisco ISE (2.7 Patch 4) and Juniper EX 2300 switch to perform 802.1x EAP-FAST (machine + user) authentication followed by Posture Assessment on Windows 10 Machines (installed with AnyConnec...
At the core of the new Firewall Threat Defense (FTD) software version 7.x, Snort 3 provides faster and superior threat protection and performance, includes better SecureX integration so SecOPS teams can quickly pivot and correlate events from multiple pr...