I have RADIUS authentication to an external RADIUS server setup for my Cisco ASA.
However I would like to differentiate between VPN login users and SSH, ASDM users etc.
At present radius allows either type of users access to any service.
But in reality I would like a restricted VPN list to access the Client VPN and another even more restricted list to access SSH and ASDM services.
I thought it would be a radius attribute perhaps but i'm not sure.