Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
202
Views
0
Helpful
1
Replies

Need to secure SSLVPN with different local user groups

baskervi
Level 1
Level 1

‎03-01-2008 09:27 AM - edited ‎03-09-2019 08:13 PM

The clientless SSLVPN is configured and running, but we have multiple vendors that will be using it. We want to give multiple vendors access to their hosts only, and their credentials will be local on the router. We currently have 4 IPs defined for each vendor, but currently nothing is in place to keep a vendor from attempting to use a different IP and getting access to other systems. Is there a way to keep a vendor's credential bound to a VPN tunnel?

Thanks

Labels:
0 Helpful
1 Reply 1

baskervi
Level 1
Level 1

‎03-05-2008 10:10 PM

We opened a TAC case and were told the routers do not support groups for local users. We ended up moving the SSL VPN to nonstandard ports and giving users access to one of these VPNs. Unless the vendor scans the available ports for the public IPs, they won't know about the other sockets. Security through obscurity.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents