Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1024
Views
0
Helpful
1
Replies

Locking users in a specific Group -- remote access IPSec VPN on ASA

femalwolf
Level 1
Level 1

‎01-19-2010 08:59 AM - edited ‎03-10-2019 04:53 PM

Hi, Experts,

I am working on a project  trying to setup Remote Access IPsec VPN  for my customer. I am using a ASA 5520 terminating  VPN.  The authentication path is like this: ASA5520 --- ACS 3.2 ---- Token Server.  The Token server has accounts for all the employees of the company. The ACS server does not have any static accounts configured, it simply forward the Radius request to the Token server.  The Remote Access IPsec VPN is designed for sales department use only. I have setup the system, but under the current setup, anyone that has a token card can pass the authentication and connect to the VPN.

My question is: how to configure the ASA or ACS server to allow ONLY sales persons to connect to the VPN while using the company provided Token card.

Thanks a lot!

Labels:
0 Helpful
1 Reply 1

Farrukh Haroon
VIP Alumni
VIP Alumni

‎02-03-2010 03:39 AM

Please have a look at this link:

http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00808cf897.shtml

Regards

Farrukh

0 Helpful
Customers Also Viewed These Support Documents