Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
333
Views
0
Helpful
2
Replies

Connect users to Specefic VPN Connection Profiles

Christopher Rosing
Level 1
Level 1

‎03-18-2014 09:08 AM

I am hosting two different customer enviroments behind an ASA.  I have two seperate connection profiles and two seperate usernames that are local to the ASA.  How can I configure a username to only be able to connecto to one of the connection profiles?

 

Thanks,
Chris

Labels:
0 Helpful
2 Replies 2

Christopher Rosing
Level 1
Level 1

‎03-18-2014 09:21 AM

username user-customer attributes

 group-lock value tunnel-group-name

0 Helpful

Marvin Rhoads
Hall of Fame
Hall of Fame

‎03-18-2014 09:34 AM

In ASDM go to configuration > Remote Access VPN > AAA/Local Users > Local Users and select the uuser you want to modify. Choose Edit and in the window that appears, deselect the "Connection Profile (Tunnel Group) Lock" Inherit checkbox. (The default behavior is to inherit "unlocked" from the DefaultRA or WebVPN Profile for client-based (AnyConnect) and clientless SSL VPN respectively.). Then choose the profile you want to the user to be required to use. Click OK when finished, Apply and Save.

 

(edit - or like Chris posted for the cli mode equivalent)

0 Helpful
Customers Also Viewed These Support Documents