Has anyone set up ACS security for SSL/Webvpn Tunnel Groups on the ASA.
I want to set up multiple tunnel groups for different SSL VPNs and control Authentication via ACS.
How do I ensure that when the user has Authenticated, he can only access a particular Tunnel Group?
There doesn't appear to be any way to tie the username name with the allowed tunnel on the ASA.
With IPSEC VPN - the client provides the group and corresponding pre-shared key to associate the user with an IPSEC Tunnel, but this doesn't work for SSL.