Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
183
Views
0
Helpful
0
Replies

VPN user restriction with ACS

pemasirid
Level 1
Level 1

‎11-16-2014 01:10 PM - edited ‎03-10-2019 10:11 PM

Hi,

We have several vpn groups configured and need to restrict particular user to particular vpn group only. We created two authorization profile and add the vpn group-policy name as RADIUS attribute 25 (class) and applied those authorization profile in two different access policies in ACS. However user1 can authenticate and connect both vpn groups whenever he select any group regardless of the group that he supposed to be. When we checked in successful authentication logs (RADIUS) we could noticed that whatever the group user selects its shows as the same value (group-name) in DAP-Tunnel-group-name.

Appreciate if someone has implemented this and advise what are the missing configuration here..?

 

thanks

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents