Restrict Certain SVC Clients from Connecting to VPN

Answered Question
Apr 7th, 2010
User Badges:

Hi,

I’d like to know if it’s possible to restrict which version of SVC it’s possible to allow for remote users to connect to my AnyConnect VPN. I know it’s possible with IPSEC clients – i.e.

group-policy [policy_name] attributes

client-access-rule 1 permit type WinNT version 5.0.05.0290

client-access-rule 2 deny type * version *

exit

Is there something similar for SVC ? Thanks.

Correct Answer by Jennifer Halim about 7 years 1 month ago

Unfortunately there is no client-access-rule restriction with anyconnect client.

However, only anyconnect image/version that you install on the ASA will allow user to connect.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jennifer Halim Thu, 04/08/2010 - 03:40
User Badges:
  • Cisco Employee,

Unfortunately there is no client-access-rule restriction with anyconnect client.

However, only anyconnect image/version that you install on the ASA will allow user to connect.

MrPrince1979 Thu, 04/08/2010 - 11:14
User Badges:

So only the people\clients with the image specified as: svc image disk0:/anyconnect....pkg are able to connect? What would happen if they had an older version wouldn't the ASA upgrade them automatically?

Actions

This Discussion

Related Content