you are correct, this is not possible at the moment. It's not a bug, it's just the way it was implemented. You could ask TAC, or better still: your Cisco account team, to submit an enhancement request.
BTW you could use a single script for all users, and in that script use variables like %username% to achieve different behavior for different users.
Or you could pre-deploy a (different) script to all users.
Both suggstions are user-based, not group-based, but I thought I'd mention them anyway in case you or anyone else with a similar question might find them useful.
Actually now I that I think of it some more, you might actually write a script that somehow extracts the groupname from \Users\%username%\AppData\Local\Cisco\Cisco Anyconnect Secure Mobility Client\preferences.xml
(this is the path on win7 - on other platforms it will be different).
And then in the script do something like
if groupname == foo
else if groupname == foo2
This would still not allow you to differentiate on group-policy, but on tunnel-group (which may or may not be equivalent, depending on how you do your group-policy assignment).
Extracting the group from the preferences file might be tricky, but I think it can be done.
Cisco Defense Orchestrator (CDO) is a cloud-based, multi-device manager that manages security products like Adaptive Security Appliance (ASA), Firepower Threat Defense next-generation firewall, and Meraki devices, to name a few.
We make improvement...
Hi allI've been having a major problem with Object Groups in FMC access policiesIf I have a pre-existing line in a policy with an Object Group which contains a list of IPs, if I add an additional IP to that object group, then deploy, the traffic is still ...
Anyone know why there are no cts dot1x command in interface configure mode?I just find cts manual and cts role-based command Hardware is C9300-48PSoftware is Cisco IOS XE Software, Version 16.12.04License i...
Hi all, I have ASA 5506W and everything work great without any issue by access from ASDM or SSH, however I am unable to access FMC via web browser then getting following error message "Onbox NGFW is managed by ASDM. Please use your ASDM Client or dow...
User Experience Enhancements
As part of the Cisco Common User Experience program, we are working towards a more uniform user experience and terminology alignment. This program runs across all Cisco security products.
Cognitive Intelligence en...