Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

How can I control what can be access based on user ID

Hello,

Currently I am working on a VPN project using Cisco VPN 3000 series.

One of my concern is:

When user connects and establish a VPN tunnel using Radius Authenication, how can I control what resources they can access. I mean, if I want a user Joe, to access File Server only and block access to all other server, how can I do this?

Our VPN will be placed behind the Firewall and tunneling protocol is IPSec.

Faisal Khan, consultant

2 REPLIES
New Member

Re: How can I control what can be access based on user ID

It's my understanding you can only do accounting with the 3000 at this time. Authorization is not yet supported. Hopefully, it will be supported at sometime though.

New Member

Re: How can I control what can be access based on user ID

Set up a group on the 3000 that has a filter which only permits or denys access to the hosts or subnets you want to control. Place the users that you want to limit access to in this group.

221
Views
0
Helpful
2
Replies
CreatePlease to create content