collapse

Search


User Info

 
 
Welcome, Guest. Please login or register.
Did you miss your activation email?

Author Topic: ISE CoA for Anyconnect VPN  (Read 14070 times)

Offline santoshcsco

  • Cisco Newbie
  • *
  • Posts: 1
  • Reputation: 0
  • Certification: CCIE
ISE CoA for Anyconnect VPN
« on: August 04, 2015, 10:29:41 PM »
Hi,

this is the requirement,
Single Anyconnect Profile :
Using ISE for authentication and authorization with dynamic IP assignment based on the OU groups to remote users.

can this be done.. i know this can be done using parameter-map on ASA, but can we leverage on ISE for this.

 

Offline MC

  • Global Moderator
  • Cisco Guru
  • *****
  • Posts: 401
  • Reputation: 606
  • CCIE x3 (RS,Sec,SP)
  • Certification: CCIE
Re: ISE CoA for Anyconnect VPN
« Reply #1 on: August 05, 2015, 05:53:50 AM »
That should be possible. You would have multiple group-policy on the ASA. Based on auth result, you can use Radius class attribute in auth profile to assign user to group-policy. All user will use the same anyconnect client profile (ie tunnel- group)

 

Related Topics

  Subject / Started by Replies Last post
2 Replies
26825 Views
Last post August 18, 2013, 05:59:34 PM
by MC
2 Replies
15755 Views
Last post October 09, 2014, 12:55:10 AM
by ModSheVit
2 Replies
16267 Views
Last post October 11, 2015, 03:32:04 PM
by Ted
3 Replies
15845 Views
Last post April 28, 2016, 09:25:46 PM
by MC
3 Replies
52873 Views
Last post January 23, 2024, 10:45:24 PM
by MC

SimplePortal 2.3.7 © 2008-2024, SimplePortal