- Bronze, 100 points or more
I have recently aqquired a Cisco ASA device with the intention of setting up a CLientless SSL VPN Portal.
My question is, can i control who has access to which portal page via LDAP Group membership?
For now, we have a staff portal at device.domain.com/staff
a computing portal at device.domain.com/computing
I would like to only permit members of the Staff group access to the staff portal and only memeber of computing to the computing portal.
I have LDAP authentication working ok for both profiles and i applied LDAP Attribute Maps that mapped the memberOf attribute to the IETF-Radius-Class attribute on the ASA, but i am not sure i am doing it correctly!
Any help much appreciated,