I have a ASA 5520 upon which I need to build a WebVPN for the company urls - webmail, intranet portals etc.
There will be 2 groups -
a. Confidential Access - For senior management.
b. Public Access - For employee access.
RSA Token & LDAP auth would be used for access to the WebVPN. However, I am unclear on certain aspect.
How do I isolate the 2 groups? I mean only Senior management should be able to view & access the first set of links while employees see and access the other set of links only.
Both the groups will be available to all users loggin on to the WebVPN. Since the authentication mechanism - LDAP - is the same, anyone would be able to access the groups and in turn, urls.
Please suggest what approach can be taken in this regard.