01-08-2014 11:00 PM
Hi,
1) ASA 5520 is configured with Remote Access VPN (cisco VPN client 5.0) using RADIUS authentication(Windows 2008- NPS). following are the VPN profile created in ASA for official use.
a) admin
b) Vendor-A
c) Vendor-B
d) Vendor-C e.t.c
Issue here is any RADIUS user can login to all the above profiles & get access to the access configured with their lanpools to internal resources.
Is there any we can restrict a RADIUS user to a specific profile ? say Admin profile is only be accessed to specific user or group from AD?
Any help would be appreciated.
Thanks
01-09-2014 12:36 AM
This was discussed multiple times. Check group-lock functionality and available RADIUS attributes for your ASA version.
01-09-2014 12:48 AM
Thanks for your reply.
we have 8.2(5) version on the ASA.
Could you please get me a link which specify this ?
thanks
01-09-2014 05:26 AM
Could you please someone shed some light on this?
thanks
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide