08-03-2009 10:18 AM
Hi,
I configured ASA 5510 for IPsec & SSL. We have a IT team and normal users. All connect to VPN, now i need to differentiate IT team and grant them access to DMZ network and normal users shouldn't access DMZ network. How to differentiate?
08-03-2009 10:19 AM
All users are authenticated using AD.
08-03-2009 03:04 PM
Look into DAP dynamic access policies
http://www.cisco.com/en/US/docs/security/asa/asa80/asdm60/user/guide/vpn_dap.html#wp1126761
http://www.cisco.com/en/US/products/ps6120/products_white_paper09186a00809fcf38.shtml
Regards
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide