Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
334
Views
0
Helpful
3
Replies

access restrict

Shibu1978
Level 1
Level 1

‎01-08-2014 11:00 PM

Hi,

1) ASA 5520 is configured with Remote Access VPN (cisco VPN client 5.0) using RADIUS authentication(Windows 2008- NPS). following are the VPN profile created in ASA  for official use.

a) admin

b) Vendor-A

c) Vendor-B

d) Vendor-C      e.t.c

Issue here is any RADIUS user can login to all the above profiles & get access to the access configured with their lanpools to internal resources.

Is there any we can restrict a RADIUS user to a specific profile ?  say Admin profile  is only be accessed to specific user or group from AD?

Any help would be appreciated.

Thanks

Labels:
0 Helpful
3 Replies 3

Marcin Latosiewicz
Cisco Employee
Cisco Employee

‎01-09-2014 12:36 AM

This was discussed multiple times. Check group-lock functionality and available RADIUS attributes for your ASA version.

0 Helpful

Shibu1978
Level 1
Level 1
In response to Marcin Latosiewicz

‎01-09-2014 12:48 AM

Thanks for your reply.

we have 8.2(5) version on the ASA.

Could you please get me a  link which specify this ?  

thanks

0 Helpful

Shibu1978
Level 1
Level 1
In response to Shibu1978

‎01-09-2014 05:26 AM

Could you please someone shed some light on this?

thanks

0 Helpful
Customers Also Viewed These Support Documents