ASA 5520 User Control

Unanswered Question
Feb 17th, 2009
User Badges:

Hi ,


Can we limit the number of users login to the VPN?


eg.

The group-policy A has 50 accounts configured in a Radius server. But we only allow 20 accounts/users login to the VPN concurrently.


Any way to achieve the above request?


Thanks & Regards,



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
eddie.mitchell@... Wed, 02/18/2009 - 06:18
User Badges:
  • Silver, 250 points or more

I believe this is the command you're looking for:


http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563648')">http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563648


This limits the number of IPSec sessions globally.


You can also use the following command to limit the number of concurrent logons per user account:


http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563983')">http://www.cisco.com/en/US/docs/security/asa/asa81/command/ref/uz.html#wp1563983


Hope this helps.

doraemonheng Wed, 02/18/2009 - 17:36
User Badges:

Hi Eddie,


Thanks for your reply.


Seems like this command is for global configuration which will limit the entire box vpn session. What am looking for is to limit the session inside a particular group-policy. Anyway, this is a useful doc too ... thanks... : )


Regards,



Actions

This Discussion