Is this on IOS or on ASA ?
How are the clients authenticating?
How are the dynamic sites authenticating?
Can you share the config (after removing any sensitive information)?
If this is on IOS, you should be able to solve this using ISAKMP profiles, see e.g.
hth
Herbert