If you want to make different rules for different users and still have them use the same VPN Client profile/group, you can do it.
If you want specific configuration help you will need to provide me with information about the local networks (LAN and VPN Client) and what kind of access rules you want for the users etc.
Generally you can try the following approaches:
Configure each user which traffic you want to restrict with his/her own VPN IP address under the username configuration on the ASA
The user will always get the same IP address from the ASA when connecting with VPN Client and therefore you will know what the source address for his/her connections will be
When you have configured the IP addresses under the usernames, you can for example create an "object-group network " for them, add the mentioned IP addresses there and use that "object-group" for access rules for the VPN Client.
Rest of the VPN client usernames can be left to use the basic VPN Pool and in the access rules you can permit them to access anything behind the ASA.
As I said, the above is just the general approach you could take to easily limit access to some and permit all for others.
For more specific configuration I would need to see what the configuration looks like now.
ISE 3.0 with patch level 3, licenses are showing as "Released for Entitlement" for all term based licenses. This is because of a bug CSCvz33870.I have tried all possibilities, including renewing registration, de registering, resetting, and updating from I...
This month, we're excited to bring awareness to a newly formed partnership between Cisco Secure and IBM.
Securing today's dynamic enterprise applications is critical. With hybrid and multi-cloud adoption, traditional network-based security ran into limita...
Listen: https://smarturl.it/CCRS8E42Follow us: twitter.com/CiscoChampion
APIClarity is an open source, cloud-native visibility tool for APIs. It utilizes a Service Mesh framework to capture and analyze API traffic and identify potential risks.
Hello everyone, A new video in the Cisco Secure Terraform Series has just been published. If you are interested in Infrastructure as Code, and Terraform, you don't want to miss out on this amazing series with Jason "Canadian Bacon" Maynard! Newe...