We are using the ASA5550 for the client VPN implementation with IAS as the authentication server (Windows AD user accounts). Now, if we wish to have a user connect to our VPN who is a vendor and does not need whole lot of abilities to browse on the network while on VPN. We were just thinking if we can somehow assign the user's machine a specific IP so that he will always get this same IP, and then we will be able to place restrictions/ACL on this IP to limitize the user to access just what he allowed to.
Kindly let me know if we can have any functionality where we can attach an IP with the user-id in ASA and/or MS-IAS. Awaiting your response!
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...