01-21-2009 08:50 AM
Hi,
I have users happily connecting to my Cisco ASA via the Cisco VPN client. Now I need to get a contractor to VPN in and I want to create a separate profile for them and only allow then to a certain sunbnet, is this possible?
Thanks
01-21-2009 09:22 AM
I don't understand why get a concentrator if you already have an ASA?
LOL I'm blind it's contractor!!! Sorry.
Different group-policy with vpn filter should do the trick.
01-21-2009 09:22 AM
I would setup a new tunnel-group that assigns this user an IP address from a different DHCP range than the rest of your VPN users, and this is also where you will define the authentication parameters. Then just use an ACL to restrict access to whatever he needs. You could actually use the same group-policy for both groups.
I can post a mock-config if you like...
HTH,
Paul
01-21-2009 09:23 AM
Kwillacey - I almost made the same mistake! Contractor - not concentrator!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: