- Silver, 250 points or more
attached to this post is the vpn configuration of my ASA, here my device authenticates user suresh & other users of AAA group, but it doesn't accept the tunnel-group users cbyvpn, i wanted to restrict the access of the AAA group not to login for VPN, bcoz that AAA group is meant only for logging on to this ASA via SSH or Telnet, but he can do both, so there is possibility that it can be mis-used. lemme know the configuration part where i hav done the mistake.
if i am not wrong "DefaultRAGroup" is the command which uses the local authentication AAA group. am i right?