Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Same user, 2 different ASAs, restrict access

Hello,

If I configure a user that is authenticated against AD and they can use the IPSec client to connect to 2 different ASA (both part of the same MPLS network and both authenticate against the exact same AD) can I limit the IP addresses this user can reach when connected to ASA 1 and give a different set of IP address limits when connected to ASA 2?

The goal is to keep this user from working on the production system and the develpment system at the same time  and of course getting those 2 systems confused and screwing things up.    

Thanks

All replies rated.           

2 REPLIES
Bronze

Re: Same user, 2 different ASAs, restrict access

try vpn filter for the tunnel group?

Sent from Cisco Technical Support iPad App

New Member

Re: Same user, 2 different ASAs, restrict access

That may help but I forgot to add that I want other users to be able to reach everything that the ASA can  talk to.  All other users authenticate to the same AD and I want them to have unrestricted access.

Thanks,

All replies rated

85
Views
4
Helpful
2
Replies
CreatePlease login to create content