Hello,
I want to restrict access to remote access users based on group membership. There could be 100 at some point.
LDAP attribute maps work, but I would have to update the LDAP attribute map and create a group policy for each group.
DAPs work also but I'm running in multi-context mode which Cisco says is not supported.
I would rather use DAPs.Does anyone use DAPs for checking group membership in multi-context mode without issue?
Or are VPN filters a better option?
is there a best practice for this?