Radius and ASA

Unanswered Question
Aug 3rd, 2010
User Badges:

I have a ASA5520.  I created an authorization policy for users connecting using the VPN client which is installed on laptops.  It is pretty basic.  Radius just checks that they are a memeber of a group and then they get access.  I want to use the SSL VPN's on the ASA and control it via Radius as well.   I want it to use a different group for access.  I think the only way to do this would be to create a second policy and point it to a different server? 

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Panos Kampanakis Tue, 08/03/2010 - 15:25
User Badges:
  • Cisco Employee,

Radius can push different attributes for access. For example per-user override ACL can be used for different radius user groups. So, you could use the same server to push different policies.

I hope it helps.


PS: The AAA section discussion will have relevant info also.


This Discussion