Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

How do I control who has access to Clientless SSL VPN on ASA 5520 with Raduis through acs 5.2 ?

I have setup clientless SSL VPN on my ASA.  User authentication is done by RADIUS using ACS 5.2, I have created two portal one for IT department and the other for auditing department but the user in auditing if the select IT group from the drop down list they can login to it, my question is how can I make them login to their group only and prevent them from accessing other groups ?

Thank you,

3 REPLIES
New Member

How do I control who has access to Clientless SSL VPN on ASA 552

I need to do this same exact thing for SSL.

However, my release of ACS does not support it and it has been several months since I worked on my own issue.

I recall there being a need to use OU= in a specific RADIUS group in ACS. It wasn't the IETF I had in there but another which my ACS release did not support. At that time I found out that v5.2 supported this Radius group feature.

Maybe this small piece of info can get you pointed in the right direction until someone else chimes in.

New Member

How do I control who has access to Clientless SSL VPN on ASA 552

Ichance, thanks for the input i was able to do that with MS AD by using the "LDAP atrribute map" at that time i worked with cisco support and they show me how to do it, but this time I wanted to but this for discussion so everyone can use it if the same issue comes up.

New Member

How do I control who has access to Clientless SSL VPN on ASA 552

I Made that work with raduis too please look for this Doc

"Group Authentication separation  raduis Cisco ACS 5.2 and Cisco ASA SSL VPN"

this doc has a guide about how to do that

Thank you,

464
Views
0
Helpful
3
Replies