Hi All,

I am trying to work with anyconnect solution that can be used for different set of users being authorized by different authorization ldap servers. My setup is as below.

using Cisco FTD v7.2.5

Cisco Secure Client 5.x

user group 1, connects to vpn1.domain.org, is authneticated via azure AD saml authentication, VPN policy is authorized by LDAP server1.

User group 2, connects to vpn1.domain.org, is authenticated via azure AD saml authentication, VPN policy is authorized by LDA server2.

where in the config will I make the different connection profile to ensure right user group gets to right LDAP server? any Idea how will this be achieved?

down the line we will move the user group2 to a different firewall for anyconnect vpn.

Regards, V