Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1141
Views
0
Helpful
1
Replies

Limit simultaneous IPsec connections per user across two ASA

DirtySpiv
Level 1
Level 1

‎10-10-2013 11:56 PM - edited ‎02-21-2020 07:13 PM

I have two Cisco ASA devices, providing Client-to-Site IPsec VPN. I want to configure them for RADIUS authentification (Windows NPS) and limit

simultaneous connections per user on both ASA devices. Is it possible?

Labels:
0 Helpful
1 Reply 1

JORGE RODRIGUEZ
Level 10
Level 10

‎10-15-2013 05:12 PM

Hello,

It should be possible if you use ldap which gives you more granularity than radius, if your two ASAs can point to an internal AD structure domain  I dont see why it cannot be possible. I have not come across such scenario, you will need to dig in and look into AD/ldap attribute maps / AD  group policies  etcc.. 

This link may give you some hints  

http://www.cisco.com/en/US/docs/security/asa/asa80/asdm60/selected_topics/enforce_AD.html

Regards

Jorge Rodriguez
0 Helpful
Customers Also Viewed These Support Documents