ASA 5520 User Control

Unanswered Question
Feb 17th, 2009

Hi ,

Can we limit the number of users login to the VPN?

eg.

The group-policy A has 50 accounts configured in a Radius server. But we only allow 20 accounts/users login to the VPN concurrently.

Any way to achieve the above request?

Thanks & Regards,

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
eddie.mitchell@... Wed, 02/18/2009 - 06:18

I believe this is the command you're looking for:

http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563648')">http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563648

This limits the number of IPSec sessions globally.

You can also use the following command to limit the number of concurrent logons per user account:

http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563983')">http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563983

Hope this helps.

doraemonheng Wed, 02/18/2009 - 17:36

Hi Eddie,

Thanks for your reply.

Seems like this command is for global configuration which will limit the entire box vpn session. What am looking for is to limit the session inside a particular group-policy. Anyway, this is a useful doc too ... thanks... : )

Regards,

Actions

This Discussion