Restrict Certain SVC Clients from Connecting to VPN

Answered Question
Apr 7th, 2010

Hi,

I’d like to know if it’s possible to restrict which version of SVC it’s possible to allow for remote users to connect to my AnyConnect VPN. I know it’s possible with IPSEC clients – i.e.

group-policy [policy_name] attributes

client-access-rule 1 permit type WinNT version 5.0.05.0290

client-access-rule 2 deny type * version *

exit

Is there something similar for SVC ? Thanks.

I have this problem too.
0 votes
Correct Answer by Jennifer Halim about 6 years 8 months ago

Unfortunately there is no client-access-rule restriction with anyconnect client.

However, only anyconnect image/version that you install on the ASA will allow user to connect.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jennifer Halim Thu, 04/08/2010 - 03:40

Unfortunately there is no client-access-rule restriction with anyconnect client.

However, only anyconnect image/version that you install on the ASA will allow user to connect.

MrPrince1979 Thu, 04/08/2010 - 11:14

So only the people\clients with the image specified as: svc image disk0:/anyconnect....pkg are able to connect? What would happen if they had an older version wouldn't the ASA upgrade them automatically?

Actions

This Discussion

Related Content