I currently have ASA 5510 VPN that is configured to work with NAC 4.5 inline mode with Virtual GW and CCA using VPN Single Sign On with Active Directory via a MS IAS Radius server. I am trying to use the AUTH Servers mapping rules feature on the NAC manager. The vendor will have an AD account and be in the VPNUsers AD group which matches the attribute on the MS IAS Radius server but I am trying to assign different NAC roles depending on the user in that group. I read the docs but I am no MS IAS expert and I have tried a couple attributes but not working. Getting the mapping rules working would really fix all the issues because I can assign more restrictive roles to vendors and create roles for IT...Finance ETC but maintain 1 RADIUS server...with 1 AD group....I can find example using LDAP mapping but nothing of real help for Radius mapping
I have this problem too.