I'm currently using an ASA 5520 running 7.2 for my VPN. We have it configured to verify the machine certificate and then pass user authentication to a microsoft IAS. It works fine, but everyone currently gets an IP from the same pool of address on my DHCP server.
If possible I would like to be able to seperate certain Active Directory groups and have them be on different subnets.
Does anyone know how to configure IAS to do the address assignment or is it possible with configuration on the ASA?