11-12-2015 01:32 PM - edited 02-21-2020 08:33 PM
Hi Support,
Is there a way for a remote access VPN to allow certain users access to "Host A,B,C" and other users to access Host D,E,F? Basically we want to have certain users have access from home to a few server and other users only have access to other certain servers. Is this possible without a TACACS or some other appliance? Thanks guys!
Solved! Go to Solution.
11-12-2015 05:49 PM
Hi John,
Yes, you can configure split tunnelling to allow a specific group of users to access specific host.
How this is achieved is you create a different connection profile for different users, associate a group-policy with it and under each group-policy , you have a split tunnelling access-list defined with entries of different hosts.
You need to create 2 connection profiles here and map them with 2 group-policy allowing access to 2 differernt resources (they can be multiple as well)
Here is a reference document :-
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
11-12-2015 05:49 PM
Hi John,
Yes, you can configure split tunnelling to allow a specific group of users to access specific host.
How this is achieved is you create a different connection profile for different users, associate a group-policy with it and under each group-policy , you have a split tunnelling access-list defined with entries of different hosts.
You need to create 2 connection profiles here and map them with 2 group-policy allowing access to 2 differernt resources (they can be multiple as well)
Here is a reference document :-
Regards,
Dinesh Moudgil
P.S. Please rate helpful posts.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide