Use LUA for DAP - VPN users

Unanswered Question
Sep 6th, 2010
User Badges:

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:10.0pt; font-family:"Times New Roman"; mso-ansi-language:#0400; mso-fareast-language:#0400; mso-bidi-language:#0400;}

Hello, I have an old pix515 witch I changed to ASA 8.04. I use DAP (Dynamic Access Policy) to match policies for the VPN users, I get the policies for the users from an LDAP (matching specific attributes that I have customized).

Now I have a problem, I have an attribute in LDAP that contains a date when the VPN for the user should expire. Is there a way to use LUA (I know you can program things with this) to compare dates and if it is not expired allow the rule?. Basically I need to use LUA to compare and check if today is before the expiration day and allow a rule.

I know it sounds weird and believe me it is.

Any help would be appreciated.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)


This Discussion