I have a need to maintain an internal SLA with some of the clients that are sitting in our premises. They want reassurance that of the total 16MB leased internet link that we have to the cloud, a minimum of 4MB is assured to them at all times. I have a web gateway / proxy appliance that doesn't have such a functionality.
I also have ASA and 2800 routers at the edge. Can I do this using them in any way? What are my other 3rd party options?
"When you define the class 'cust1', where do we pick the 'cust1' value from and the class contituents? "
That would be defined in a "class-map". Attributes you can match on are, depending on the platforms, an enhancement of ACLs (although ACLs can be part). Lots of information within the Cisco site - look for CBWFQ.
"Can I use my Windows Radius 802.1x (IAS) integratiion with my Router to define the AD groups within my router classes? "
Don't believe so, unless somehow you can AD groups tag packets. (Might be possible at the host level.)
"Unfortunately, the clients are spread much beyong the value of 4, they are about 50 and very dynamically changing within my AD groups."
As prior answer, AD relationship can be an issue. On issue of 50 groups, you can defined that many with CBWFQ (more actually), but the reason I noted 4, beyond 4 groups you can't guarantee all 50 groups might obtain 4 Mbps unless you have 50x that bandwidth. You might guarantee each group obtains an equal share of bandwidth.