01-21-2009 08:50 AM
Hi,
I have users happily connecting to my Cisco ASA via the Cisco VPN client. Now I need to get a contractor to VPN in and I want to create a separate profile for them and only allow then to a certain sunbnet, is this possible?
Thanks
01-21-2009 09:22 AM
I don't understand why get a concentrator if you already have an ASA?
LOL I'm blind it's contractor!!! Sorry.
Different group-policy with vpn filter should do the trick.
01-21-2009 09:22 AM
I would setup a new tunnel-group that assigns this user an IP address from a different DHCP range than the rest of your VPN users, and this is also where you will define the authentication parameters. Then just use an ACL to restrict access to whatever he needs. You could actually use the same group-policy for both groups.
I can post a mock-config if you like...
HTH,
Paul
01-21-2009 09:23 AM
Kwillacey - I almost made the same mistake! Contractor - not concentrator!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide