Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Limit simultaneous IPsec connections per user across two ASA

I have two Cisco ASA devices, providing Client-to-Site IPsec VPN. I want to configure them for RADIUS authentification (Windows NPS) and limit

simultaneous connections per user on both ASA devices. Is it possible?

Everyone's tags (3)
1 REPLY

Re: Limit simultaneous IPsec connections per user across two ASA

Hello,

It should be possible if you use ldap which gives you more granularity than radius, if your two ASAs can point to an internal AD structure domain  I dont see why it cannot be possible. I have not come across such scenario, you will need to dig in and look into AD/ldap attribute maps / AD  group policies  etcc.. 

This link may give you some hints  

http://www.cisco.com/en/US/docs/security/asa/asa80/asdm60/selected_topics/enforce_AD.html

Regards

591
Views
0
Helpful
1
Replies
CreatePlease to create content