Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1002
Views
0
Helpful
2
Replies

How can I control what can be access based on user ID

chetona
Level 1
Level 1

‎11-06-2000 06:37 AM - edited ‎03-08-2019 07:48 PM

Hello,

Currently I am working on a VPN project using Cisco VPN 3000 series.

One of my concern is:

When user connects and establish a VPN tunnel using Radius Authenication, how can I control what resources they can access. I mean, if I want a user Joe, to access File Server only and block access to all other server, how can I do this?

Our VPN will be placed behind the Firewall and tunneling protocol is IPSec.

Faisal Khan, consultant

Labels:
0 Helpful
2 Replies 2

r-simpson
Level 3
Level 3

‎11-10-2000 08:04 AM

It's my understanding you can only do accounting with the 3000 at this time. Authorization is not yet supported. Hopefully, it will be supported at sometime though.

0 Helpful

jlaster
Level 1
Level 1

‎11-14-2000 07:17 AM

Set up a group on the 3000 that has a filter which only permits or denys access to the hosts or subnets you want to control. Place the users that you want to limit access to in this group.

0 Helpful
Customers Also Viewed These Support Documents