I have 1 IAS RADIUS server that authenticate different Cisco devices on my network which different groups should get access to.
the first group is VPN clients connecting to my ASA5505 -> only VPNusers group should get access here
the other groups are admins from different domains -> only members of the DomainAdmin2Cisco group should access here
I'll also need a 3rd group for non admin level 1 priv access
on ISA I've created 2 clients (ASA & switch) and 2 remote access rules - one per windows group
both group get access to both clients
I've tried most of the attributes on IAS side but they don't seem to matter
how do I differentiate (even on a mac-address level) between the radius clients?