I'm interested in implementing authorization (of sorts) on my VPN concentrator. Let me elaborate on my objectives. I would like a subset of my remote users to have access to certain systems on the network and the other users a different set of systems.
I'm hoping i can achieve this using ACLs based on group authentication however I cannot find where I might configure this.
I suppose I could assign the various groups a different DHCP scope and use my firewalls to achieve the same thing but this adds administrative overhead I would prefer to avoid.
Can anyone advise if my plan to use differnt ACLs based on group is viable, and if so how I configure this?
Thanks in advance